Local / remote file inclusion TL;DR: Including attacker-chosen files into server-side templates — log poisoning, php://filter chains. Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References https://book.hacktricks.wiki/en/pentesting-web/file-inclusion/index.html