A Multi-Perspective View of PHP Remote File Include Attacks

If you look at the logs of just about any production web server, you are bound to find signs of a remote file include (RFI) attack. It is easy to disregard them as low hanging Internet broadscan noise, but attackers would not be scanning the Internet for vulnerable hosts if they were not also...
Dennis Schwarz
November 10, 2009

All papers are copyrighted. No re-posting of papers is permitted