Arbitrary files can be read from the system using LOAD_DATA unless this setting is disabled.
Arbitrary files read by attackers when combined with a SQL injection vulnerability.
Disable the local infile setting
The following example will fail the google-sql-mysql-no-local-infile check.
The following example will pass the google-sql-mysql-no-local-infile check.