Repetier Server through 1.4.10 allows ..%5c directory traversal for reading files that contain credentials, as demonstrated by connectionLost.php.
View the template here CVE-2023-31059.yaml
References:
https://nvd.nist.gov/vuln/detail/CVE-2023-31059