Skip to main content
Information Security

Questions tagged [file-inclusion]

Ask Question

A remote code execution attack where user input is used to build the path of code files to be executed, allowing an attacker to control which code is executed. Most commonly affects web applications that rely on a scripting run time, most commonly PHP.

39 questions
Newest Active Bountied Unanswered
0 votes
0 answers
1k views

Arbitrary File Upload Vulnerability

I have found an arbitrary file upload vulnerability on a flask application that I was playing with that essentially allows me to append to any file (and create new ones) in the file system. The code ...
João Andreotti's user avatar
João Andreotti
  • 1
0 votes
0 answers
224 views

Does Burp Suite affect my request directly?

When I try to bypass the security configuration of Natas13 (http://natas13.natas.labs.overthewire.org/ A/P:natas13/lW3jYRI02ZKDBb8VtQBU1f6eDRo6WEj9) while using Burp Suite Community Edition on ...
Iris Chen's user avatar
Iris Chen
  • 1
0 votes
0 answers
112 views

How does "./" affects signature generation for files, in a PHP based web application?

I am solving a lab related to serialization vulnerabilities. It deals with retrieving files based on the signature. The theory of the lab states as quoted, "Adding ./ will still give you the same ...
ThinkTank's user avatar
ThinkTank
  • 1
0 votes
2 answers
566 views

How does Local File Inclusion (LFI) work?

In the past few days, I have created my own webserver to serve as my sandbox for learning pen-testing. I saw this blog (https://outpost24.com/blog/from-local-file-inclusion-to-remote-code-execution-...
CBCH's user avatar
CBCH
  • 15
1 vote
2 answers
514 views

How to know if an RFI/LFI attack was successful?

Let's say that an attacker wants to search websites for RFI/LFI vulnerability with a script, he's fuzzing the URL with a list of remote/local files. And he prints the headers that return from the ...
user avatar
user226295
1 vote
1 answer
2k views

Local file inclusion in JS app [closed]

I am working on a project which requires the name of the page as a query parameter 'path'. The app stores path variable as res.query.path. My manager asked me to pay attention to LFI, so I'm concerned ...
hakiki_makato's user avatar
hakiki_makato
  • 143
0 votes
1 answer
1k views

Rails File.open(#{Rails.root}) is vulnerable to LFI?

I am performing White Box testing on Rails application with static code analyzing tools like brakeman, I came across an instance where the developer is loading images using file.open. file = File....
Captain-Robot's user avatar
Captain-Robot
  • 3
1 vote
2 answers
13k views

Local File Inclusion [ Post-Exploitation ]

I am curious what kind of sensitive files should I look for on a Windows server which is vulnerable to LFI compared to Linux? I mean the first file or common files which a pentester or an ...
Cash-'s user avatar
Cash-
  • 57
0 votes
1 answer
6k views

Metasploit Exploitation with Virtual Hosts (PHP_Include Exploit)

I am currently trying to build an example of a host vulnerable to Remote File Inclusion vulnerabilities. I have a docker application which hosts 3 vulnerable websites, and in order to access them I ...
asphyz's user avatar
asphyz
  • 1
1 vote
2 answers
12k views

Tomcat application arbitrary file read exploitation

In recent black-box pen-test of a webapp hosted on CentOS, I found a vulnerability that allowed me to grab contents of files (kind of file inclusion) located within the home path of Tomcat. In ...
puni aze's user avatar
puni aze
  • 11
-1 votes
1 answer
377 views

How To Patch LFI Vulnerabilities [closed]

I wonder how to patch the LFI problem in this code? Please suggest a good way to patch this vulnerability.
Skeletal007's user avatar
Skeletal007
  • 1
0 votes
1 answer
284 views

Remotely included script cannot set session variables

I'm trying to simulate a remote file inclusion attack on my local web server as part of a course I am taking. I got the idea of being able to "logging" in on a website I set up without really logging ...
Simon Hyttfors's user avatar
Simon Hyttfors
  • 3
5 votes
2 answers
14k views

What is the difference between RFI/LFI and SSRF?

Is there any difference between those? Can we say that Server Side Request Forgery (SSRF) is a generalization of Remote File Inclusion (RFI) and Local File Inclusion (LFI)?
kozooh's user avatar
kozooh
  • 165
5 votes
1 answer
13k views

Exploit LFI bug when a ".inc.php" is appended to the file name?

I'm trying to exploit a LFI bug. My link looks like this: http://example.com/challenge/mypage.php?page=test When I put /etc/passwd instead of test it shows me: Warning: include() [function.include]:...
Freeman's user avatar
Freeman
  • 241
1 vote
1 answer
2k views

Difference between XML external entities and Remote File Inclusion attacks

I was just studying about the XML external entities attack and Remote File Inclusion Attack. According to my understanding, the XML external entities attack is where the XML parser in the web ...
Skynet's user avatar
Skynet
  • 598

15 30 50 per page
1
2 3