include()
in PHP) while SSRF ones on functions that only handle data (e.g. fopen()
in PHP). RFI vulnerabilities will lead to RCE much more often and easily that SSRF ones.http://some.website/index.php?url=https://someother.website/index.php
, and url
being the vulnerable parameter, the following basic payloads can help a tester fetch content of files, scan ports, access filtered resources and so on.