November 2019
Beginner
550 pages
13h 14m
English
Servers that are vulnerable to LFI security flaws allow an attacker to display the content of files through the URL within a web browser. In an LFI attack, the penetration tester can read the content of any file from within its directory using either ../ or /.
To get started, let's head back over to the Damn Vulnerable Web Application (DVWA) web interface within OWASP BWA:

Read now
Unlock full access