Description

This plugin will find local file include vulnerabilities. This is done by sending to all injectable parameters file paths like “../../../../../etc/passwd” and searching in the response for strings like “root:x:0:0:”.

Plugin type

Audit

Options

This plugin doesn’t have any user configured options.

Source

For more information about this plugin and the associated tests, there’s always the source code to understand exactly what’s under the hood:
github-logoPlugin source code
Unittest source code

Dependencies

This plugin has no dependencies.