DotDotPwn question

Hi, sorry if this has been asked before…I tried searching up for it but didn’t find anything about it.

So I watched the dotdotpwn video and decided to give it a try on a bug bounty program target today and the tool actually returned a few traversals it thinks are vulnerable. So what exactly do I do with them because opening the links just gives me a redirect error…or paths it found just a false positive?

Thanks