LFI / Path Traversal

Check any input that could be file access:

ex params:

?filename=...
?path=
lang=en

Just bruteforce with this LFI payload into that params.

  1. Linux https://github.com/carlospolop/Auto_Wordlists/blob/main/wordlists/file_inclusion_linux.txt

  2. Windows https://github.com/carlospolop/Auto_Wordlists/blob/main/wordlists/file_inclusion_windows.txt

PreviousXSSNextWordpress

Last updated