====== Globally Writable File(s) Attack ======

Input can be injected into an unknowing script or application by reading a file that an attacker has writen malicious data to.  Generally a problem on a [[security:shared_host_or_compromised_system|shared host or compromised system]].

===== Exploited Vulnerability =====

  * [[security:functions:file_functions|Security sensitive file functions]]

===== Additional Information =====

  * See [[security:web application security]] and [[catalog|security attacks catalog]].