Local File Inclusion
Exploit LFI to read sensitive files, achieve RCE via log poisoning, and
more.
SQL Injection
Classic and blind SQLi — from data extraction to OS command execution.
WordPress
CMS fingerprinting, WPScan workflows, plugin abuse, and common attack paths.