← Cybersecurity Alphabet Soup

RFI

Remote File Inclusion

attacksmedium

Remote File Inclusion is a web flaw where an application can be made to fetch and execute a file hosted on an attacker-controlled server. Because the attacker supplies the file, this usually leads directly to full code execution on the web server. It is closely related to Local File Inclusion but is generally more severe when present.

Sources

More in attacks