Lfi Vulnerability 2024 Election

Lfi Vulnerability 2024 Election. The option 'follow_symlinks' can be used to determine whether to follow symbolic links outside the static root directory. This is a proof of concept for a server side template injection (ssti) & local file inclusion (lfi) vulnerability in crushftp.

Identifying lfi vulnerabilities within web applications; Follow_symlinks=true makes it vulnerable to lfi.