Local File Include with Access log

My demo for Local File Include. If you can not found any file contain mailicous code on server, you can use access log to inject malicious code. Note: If you send url by web browser, url will be encoded. So, you must send direct url to server to write code to access log.



------------------------------------------------------------
Thanks for reading
--------------------------------------------------------------------------
Security Research
All my Lab:
Linux Lab -- window and Cisco Lab
to be continued - I will update more.

Comments

Popular posts from this blog

Python - Multithread to read one file

Install Xposed Inspector and Frida on Genymotion

OpenCA tutorial