RFI exploits the include command to run your script, remotely within the given site. If we can manipulate the $base _ path variable to equal our own script / public directory, then it will run as if it was a normal file on the web server itself.
RFI exploits the include command to run your script, remotely within the given site. If we can manipulate the $base _ path variable to equal our own script / public directory, then it will r…