====== File-system Scanning Attack ======

Similar to a [[cgi_scanning|CGI]] or [[directory_scanning|directory]] scanning attack, but generally performed on local file-system on the web-server.  An elevated risk of this exists for [[security:shared_host_or_compromised_system|shared hosting]] web hosting providers. 

===== Exploited Vulnerability =====

  * [[security:functions:file_functions|Security sensitive file functions]]
  * [[security:risk:common_file_name|Common file names]]

===== Related Information =====

  * [[cgi_scanning|CGI scanning attack]]
  * [[directory_scanning|Directory scanning attack]]
  * See [[security:web application security]] and [[catalog|security attacks catalog]].