Damn Vulnerable Web Application(DVWA) — File Inclusion Walkthrough


This is a page which provides options to show content of given files.

If file1.php is clicked, it will load the content of file1.php and interpret it as php script.

Notice that the URL is /vulnerabilities/fi/?page=file1.php.

Security Level: Low




Cyber Security Enthusiast | OSCP | OSWE

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

EPNS FAQ Q. What are the EPNS Products?

What’s The Difference Between Cybersecurity And Information Security?

What you should know about Bug Hunting

4 Steps to Personal Information Security

Israel fixes command over deals of its electronic frameworks post “Pegasus” outrage

CryptoSmarts 4: The Best Free Password Managers

0📣Bamboo Trading Promotion with 100,000 USDT Giveaway! Trade Bamboo to Win a Big Prize!

Your Identity. Our Evolution

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
David Tse

David Tse

Cyber Security Enthusiast | OSCP | OSWE

More from Medium

Changes in OWASP Top 10: 2017 vs 2021

CVE-2018–1160 Writeup

InSecure Design Vulnerabilities: What are they and Why they Occurs

Learn365 Challenge Review & Year 2021 in a Nutshell