If this returns a list of files like database.sql , config.ini , or user_credentials.txt , an attacker has just struck gold.
When documenting and performing these searches, you must follow strict ethical guidelines: indexof ethical hacking
Here is a guide on how indexOf is utilized in ethical hacking scenarios. If this returns a list of files like database