Abstract
In this paper we have examined Local and Remote File Inclusion vulnerabilities in details. It is proven that these security flaws may lead to variety of problems including generation of big load to the server as well as disclosure of files which should not be accessible by the clients. These attacks are not so popular as SQL injection or Cross-Site Scripting but still they are subject of serious threat because of their consequences.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
http://en.wikipedia.org/wiki/Dynamic_web_page (July 22, 2011)
http://en.wikipedia.org/wiki/Web_developer (July 22, 2011)
Imperva company, Hacker Intelligence Initiative, Monthly Trend Report #1
http://en.wikipedia.org/wiki/Denial-of-service_attack (July 23, 2011)
http://php.net/manual/en/function.include.php (July 23, 2011)
http://php.net/manual/en/function.require.php (July 23, 2011)
http://www.php.net/manual/en/function.include-once.php (July 23, 2011)
http://www.php.net/manual/en/function.require-once.php (July 23, 2011)
http://en.wikipedia.org/wiki/Uniform_Resource_Locator (July 23, 2011)
http://en.wikipedia.org/wiki/Null_character (July 23, 2011)
http://www.intel.com/technology/platform-technology/hyper-threading/index.htm (July 24, 2011)
http://en.wikipedia.org/wiki/Unix (July 24, 2011)
http://en.wikipedia.org/wiki/Unix-like (July 24, 2011)
http://php.net/manual/en/function.system.php (July 24, 2011)
http://en.wikipedia.org/wiki/Cross-site_scripting (July 24, 2011)
https://www.owasp.org/index.php/SQL_Injection (July 24, 2011)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 Springer-Verlag GmbH Berlin Heidelberg
About this chapter
Cite this chapter
Hubczyk, M., Domanski, A., Domanska, J. (2012). Local and Remote File Inclusion. In: Kapczyński, A., Tkacz, E., Rostanski, M. (eds) Internet - Technical Developments and Applications 2. Advances in Intelligent and Soft Computing, vol 118. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-25355-3_17
Download citation
DOI: https://doi.org/10.1007/978-3-642-25355-3_17
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-25354-6
Online ISBN: 978-3-642-25355-3
eBook Packages: EngineeringEngineering (R0)