First of all, this is not my own work, i’m just spreading the word.
Original article can be found here and full credit goes out to the original author.
1 – Introduction
2 – Finding LFI
3 – Checking if proc/self/environ is accessible
4 – Injecting malicious code
5 – Access our shell
6 – Shoutz
Please, if you like this blog, consider a donation. The amount can be as small or big as you wish for it to be.
The money will be used for buying a domain and expanding this blog. So I'm doing this not for me, but also for you.
Half of the money every month (if more than 5$) will go to hackers for charity : http://johnny.ihackstuff.com/
The Exploitant 