How we found a directory traversal vulnerability in Rails routes | Dark Hacker News