LFI

GPTKB entity

Statements (23)
Predicate Object
gptkbp:instanceOf cybersecurity vulnerability
gptkbp:affects web applications
gptkbp:category gptkb:OWASP_Top_10_vulnerabilities
web security
gptkbp:cause information disclosure
remote code execution
gptkbp:detects manual code review
security scanners
gptkbp:enables attackers to read files on a server
gptkbp:examplePayload ../../etc/passwd
..\\..\\windows\\win.ini
gptkbp:exploits manipulating file path parameters
https://www.w3.org/2000/01/rdf-schema#label LFI
gptkbp:mitigatedBy input validation
proper configuration
gptkbp:relatedTo gptkb:Remote_File_Inclusion
gptkbp:riskFactor high
gptkbp:standsFor gptkb:Local_File_Inclusion
gptkbp:bfsParent gptkb:Langley_Air_Force_Base
gptkb:Langley_Field
gptkb:La_Facción_Ingobernable
gptkb:Joint_Base_Langley–Eustis
gptkbp:bfsLayer 5