A local file inclusion (LFI) vulnerability discloses the contents of files on a server.
If the files exposed include application code or data, credentials for back-end systems, or sensitive operating system files, an attacker could utilize this information to compromise the hosting server.
In some instances this can lead to Remote Code Execution (RCE) and the discovery of such vulnerabilities should always be taken seriously.
If you do not have appropriate permissions to test a website or application, DO NOT TOUCH IT!!!
OsbornePro LLC. copyright © . All Rights Reserved.