What is a Local File Inclusion (LFI) vulnerability, and what risk does it pose to a web server?
-
A
It allows remote malicious files to execute on the server via include functions
-
B
It allows attackers to include and read files from the server's local filesystem through a web parameter
-
C
It enables attackers to modify local configuration files via a web interface
-
D
It permits inclusion of external stylesheet files that bypass CSP