LFI (Local File Inclusion)

A vulnerability that allows an attacker to read or include local server files by manipulating request parameters. LFI can expose source code, configuration files containing secrets, or system logs. Combined with other flaws, it can lead to remote code execution.