Skip to main content
WP HealthKit

Local File Inclusion

A vulnerability where an attacker can read arbitrary files from the server by manipulating file path parameters.

How it works

A vulnerability where an attacker can read arbitrary files from the server by manipulating file path parameters.

In WordPress

Occurs when plugins use include() or require() with unsanitized user input for template loading.

Related terms

Remote Code Execution

WP HealthKit checks for Local File Inclusion-related vulnerabilities automatically

Run a Free Audit
All terms
What Is Local File Inclusion? — WordPress Security Glossary | WP HealthKit