RFI/LFI Payload List

November 27, 2020
(2,516 views)

As with many exploits, remote and local file inclusions are only a problem at the end of the encoding. Of course, it takes a second person to have it. Now, this article will hopefully give you an idea of protecting your website and most importantly your code from a file inclusion exploit. I’ll give code examples in PHP format.

Let’s look at some of the code that makes RFI / LFI exploits possible.

<a href=index.php?page=file1.php> Files </a>
<? Php
$ page = $ _GET [page];
include ($ page);
?>

Now obviously this should not be used. The $ page entry is not fully cleared. $ page input is directed directly to the damn web page, which is a big “NO”. Always remove any input passing through the browser. When the user clicks on “File” to visit “files.php” when he visits the web page, something like this will appear.

https: //localhost/index.php? page = files.php

Now if no one has cleared the input in the $ page variable, we can have it pointed to what we want. If hosted on a Unix / Linux server, we can display the password as configuration files for shaded or uncleaned variable input.

Viewing files on the server is a “Local File Inclusion” or LFI exploit. This is no worse than an RFI exploit.

https: //localhost/index.php? page = .. / .. / .. /....

Subscribe
Notify of
guest

This site uses Akismet to reduce spam. Learn how your comment data is processed.

1 Comment
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
Shahrukh Athar
3 years ago

This program can help you test this vulnerability: https://github.com/kurobeats/fimap

include () include_once () require () require_once () fopen () imagecreatefromXXX () file () file_get_contents () copy () delete () unlink () upload_tmp_dir () $ _FILES move_uploaded_file ()

Taking these types of configurations into account will increase the security of the server, otherwise the violation of it may compromise not only user information, but the entire server, leading to a breakdown in reputation and loss of trust in the service.

© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023
What certifications or qualifications do you hold?
Max. file size: 150 MB.

What level of experience should the ideal candidate have?
What certifications or qualifications are preferred?

Download Free eBook

Step 1 of 4

Name(Required)

We’re committed to your privacy. Hakin9 uses the information you provide to us to contact you about our relevant content, products, and services. You may unsubscribe from these communications at any time. For more information, check out our Privacy Policy.