LFI and RFI

Prophaze WAF can prevent local and remote file execution exploits by the following ways

  • Block RFI attack on application which allows attackers to include a file Exploiting dynamic file inclusion feature

  • Blocks URL in request argument

  • Blocks PHP include() function

  • Blocks requests ends with question mark

  • Path traversal and Restricted file access

PreviousXSS PreventionNextSession Fixation

Last updated