Exploiting LFI with prefix in PHP?
I have a scenario as the following:
<?php include(“resource/” + $_GET[‘vuln’]); ?>
And I’m trying to get RCE from this, or atleast acquire some interesting information.
I already looked at /etc/passwd and other important files…. Continue reading Exploiting LFI with prefix in PHP?