Statements (23)
Predicate | Object |
---|---|
gptkbp:instanceOf |
cybersecurity vulnerability
|
gptkbp:affects |
web applications
|
gptkbp:category |
gptkb:OWASP_Top_10_vulnerabilities
web security |
gptkbp:cause |
information disclosure
remote code execution |
gptkbp:detects |
manual code review
security scanners |
gptkbp:enables |
attackers to read files on a server
|
gptkbp:examplePayload |
../../etc/passwd
..\\..\\windows\\win.ini |
gptkbp:exploits |
manipulating file path parameters
|
https://www.w3.org/2000/01/rdf-schema#label |
LFI
|
gptkbp:mitigatedBy |
input validation
proper configuration |
gptkbp:relatedTo |
gptkb:Remote_File_Inclusion
|
gptkbp:riskFactor |
high
|
gptkbp:standsFor |
gptkb:Local_File_Inclusion
|
gptkbp:bfsParent |
gptkb:Langley_Air_Force_Base
gptkb:Langley_Field gptkb:La_Facción_Ingobernable gptkb:Joint_Base_Langley–Eustis |
gptkbp:bfsLayer |
5
|