References for LFI / RFI
Blogs / Articles:
LFI to RCE via access_log injectionarrow-up-right LFI to shell - Exploiting Apache access logarrow-up-right
https://medium.com/@aniltom/magic-of-the-back-slash-d868e66b532aarrow-up-right
https://outpost24.com/blog/from-local-file-inclusion-to-remote-code-execution-part-1arrow-up-right
Local File Disclosure using SQL Injection by@IndiShell1046arrow-up-right https://dl.packetstormsecurity.net/papers/attack/lfd-via-sql-inj.pdfarrow-up-right
Tools:
https://github.com/D35m0nd142/LFISuitearrow-up-right
Last updated 5 years ago
