====== Remote File Injection Attack ======

Convince a PHP script to use a remote file instead of a presumably trusted file from the local file system.

===== Exploited Vulnerability =====

[[security:functions:file_functions|Security sensitive file functions]].

===== Remedy ====

===== Additional Information =====

  * See [[security:web_application_security|web application security]] and [[catalog|security attacks catalog]].
  * [[http://www.php.net/manual/en/features.remote-files.php|URL wrappers]]