/alerttags/cwe-98/ Recent content in CWE-98 on ZAP Hugo en-us /docs/alerts/7/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/7/ <p>Remote File Include (RFI) is an attack technique used to exploit &ldquo;dynamic file include&rdquo; mechanisms in web applications. When web applications take user input (URL, parameter value, etc.) and pass them into file include commands, the web application might be tricked into including remote files with malicious code.</p>