CAPEC-252: PHP Local File Inclusion

The attacker loads and executes an arbitrary local PHP file on a target machine. The attacker could use this to try to load old versions of PHP files that have known vulnerabilities, to load PHP files that the attacker placed on the local machine during a prior attack, or to otherwise change the functionality of the targeted application in unexpected ways.

Medium

Typical severity

Per MITRE

Not rated

Likelihood of attack

Per MITRE

Related weaknesses

CWEs this targets

Detailed

Abstraction

MITRE classification

Overview

CAPEC-252 (PHP Local File Inclusion) is a detailed-level attack pattern catalogued by MITRE in the Common Attack Pattern Enumeration and Classification (CAPEC). It describes a recurring method attackers use to exploit software weaknesses.

CAPEC-252: PHP Local File Inclusion

Overview

How the attack works

What the attacker needs

Prerequisites

Resources required

Frequently asked questions

What is CAPEC-252?

How does a PHP Local File Inclusion attack work?

What weaknesses does CAPEC-252 target?

How severe is CAPEC-252?

References

Defend against CAPEC-252

Overview

How the attack works

What the attacker needs

Prerequisites

Resources required

Related weaknesses

Related attack patterns

Parent

Frequently asked questions

What is CAPEC-252?

How does a PHP Local File Inclusion attack work?

What weaknesses does CAPEC-252 target?

How severe is CAPEC-252?

References

Defend against CAPEC-252