Statements (23)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
cybersecurity vulnerability
|
| gptkbp:affects |
web applications
|
| gptkbp:category |
gptkb:OWASP_Top_10_vulnerabilities
web security |
| gptkbp:cause |
information disclosure
remote code execution |
| gptkbp:detects |
manual code review
security scanners |
| gptkbp:enables |
attackers to read files on a server
|
| gptkbp:examplePayload |
../../etc/passwd
..\\..\\windows\\win.ini |
| gptkbp:exploits |
manipulating file path parameters
|
| https://www.w3.org/2000/01/rdf-schema#label |
LFI
|
| gptkbp:mitigatedBy |
input validation
proper configuration |
| gptkbp:relatedTo |
gptkb:Remote_File_Inclusion
|
| gptkbp:riskFactor |
high
|
| gptkbp:standsFor |
gptkb:Local_File_Inclusion
|
| gptkbp:bfsParent |
gptkb:Langley_Air_Force_Base
gptkb:Langley_Field gptkb:La_Facción_Ingobernable gptkb:Joint_Base_Langley–Eustis |
| gptkbp:bfsLayer |
5
|