Skip to content

Topic Introduction

This week we will be looking at File Includes attacks, and directory traversal. These are injection like attacks where we are able to "Include" external content in a website by exploiting the sites built in functionality.

For example, we might make use of broken templating to load files from elsewhere in the system onto the live version of the site.

Question of the Week

Discuss

There are lots of interesting include style vulnerabilities in the list of CVE's Use the feed on aula to talk about the most interesting one you have seen

Back to top