1. Homepage
  2. RvR
  3. Application
  4. Attack Vectors

General Information

JSP Local File Inclusion

Variants:
Direct Persistent Session 

Vector Type:
Attack

Relevance:
Technology Specific

Layer:
Application-Level

Platforms:
JSP

Target Type:
Web Application

Affected Mechanisms:
Input Validation, Secure Design

Invented In:
01/01/2001

Added In:
08/12/2014


Vector Operation Method:
Malicious inputs can introduce malicious content or malicious local server code into the JSP application


Direct Variant:

JSP Local File Inclusion

Variant Title:
JSP Local File Inclusion

Typical Severity:
Major

Resources:

Other I

White Papers:

Learn More:


Persistent Variant:

Stored JSP Local File Inclusion

Also Known As:
Persistent JSP Local File Inclusion

Typical Severity:
Major

Resources:

White Papers:

Learn More:


Session Variant:

JSP Local File Inclusion via Session Puzzling

Also Known As:
Session JSP Local File Inclusion

Typical Severity:
Major

Resources:

White Papers:

Learn More:




TECAPI ©

Join