arbitrary file inclusion
Arbitrary file inclusion refers to a type of vulnerability found in web applications, where an attacker can manipulate the inputs of a website to include and execute malicious files from any location on the server. This can lead to unauthorized access, data leaks, and remote code execution, giving the attacker control over the website.
Requires login.
Related Concepts (1)
Similar Concepts
- arbitrary code execution
- arbitrary code execution vulnerabilities
- file inclusion attacks
- file inclusion vulnerabilities
- file inclusion vulnerability
- improper implementation of file access control
- lfi (local file inclusion) attacks
- local file inclusion
- local file inclusion (lfi)
- remote file inclusion
- remote file inclusion (rfi)
- remote file inclusion (rfi) prevention
- rfi (remote file inclusion) attacks
- unrestricted file uploads
- unsanitized file inclusion