Google Dork Local File Inclusion (Local Inclusion) Private
Local File Inclusion allow attacker include file like shell script PHP but nowaday (2016) 5% of website only is Vulnerability how can i know Vulnerability you should use tool like Acunetix or Netsparker to scan Vulnerability Local File Inclusion.
use Dork below search it on Google but so becarefully ( Hide IP )
allinurl:pgg=contact.php
allinurl:page=contact.php
allinurl:home=contact.php
allinurl:?index.php?pagina=contato.php site:br
allinurl:?index.php?pagina=clientes.php site:br
allinurl:?index.php?pagina=produtos.php site:br
allinurl:?index.php?pagina=contato.php
index.php?pagina=home.php
index.php?pagina=empresa.php
index.php?pagina=obras.php
index.php?pagina=localizacao.php
index.php?pagina=contato.php
thumb.php
index.php?pagina=empresa.php
index.php?pagina=produtos.php
index.php?pagina=representantes.php
index.php?pagina=contato.php
index.php?pagina=home.php
index.php?pagina=guia_consumidor.phpa
index.php?pagina=responsabilidade.php
My Dork by D3DS3C
LFI dork collection
inurl:"?page=news.php"
inurl:"index.php?main=*php"
inurl:"index.php?inc=*php"
inurl:"index.php?pg=*php"
inurl:"index.php?include_file=*php"
inurl:"index.php?main=*html"
inurl:"index.php?inc=*html"
inurl:"index.php?pg=*html
inurl:index.php?id=
inurl:index.php?cat=
inurl:index.php?action=
inurl:index.php?content=
inurl:index.php?page=