On March 21, 2011, Polish researcher Gynvael Coldwind published a whitepaper titled “PHP LFI via rfc1867 temporary files” on his site, dedicated to exploiting Local File Inclusion vulnerabilities in PHP environments. Within the document, Francesco “ascii” Ongaro is cited among the technical contributors who collaborated on the research, providing insights and observations useful for developing the exploit.
On March 22, 2011, a post titled “PHP security, some links” was published on researcher Gynvael Coldwind’s blog, collecting advanced technical resources related to PHP language security. Among the materials highlighted are direct references to research and contributions by Francesco “ascii” Ongaro, including a whitepaper on Local File Inclusion of temporary files created by rfc1867, already cited the previous day.
On September 24, 2021, Gynvael Coldwind published an updated version of the whitepaper “PHP LFI via rfc1867 temporary files”, dedicated to advanced Local File Inclusion techniques in PHP environments. In this edition as well, Francesco “ascii” Ongaro was cited among the technical contributors who collaborated on the research. The document, released in PDF format on the researcher’s official site, explores modern exploits and updated scenarios compared to the 2011 version, confirming the continuity and relevance of Ongaro’s contributions over time in application security.