My demo for Local File Include. If you can not found any file contain mailicous code on server, you can use access log to inject malicious code. Note: If you send url by web browser, url will be encoded. So, you must send direct url to server to write code to access log. 
------------------------------------------------------------ Thanks for reading -------------------------------------------------------------------------- Security Research All my Lab: Linux Lab -- window and Cisco Lab to be continued - I will update more.
Nam Habach


My demo for Local File Include. If you can not found any file contain mailicous code on server, you can use access log to inject malicious code. Note: If you send url by web browser, url will be encoded. So, you must send direct url to server to write code to access log.  
  
  
  
\------------------------------------------------------------  
Thanks for reading  
\--------------------------------------------------------------------------  
Security Research  
All my Lab:  
Linux Lab -- window and Cisco Lab  
to be continued - I will update more.

Nam Habach

Local File Include with Access log