Local File Inclusion (LFI) allows an attacker to include files on a server through the web browser. This vulnerability exists when a web application includes a file without properly sanitizing the input, allowing an attacker to manipulate the input and inject jump characters from the path and include other files from the webserver. By exploiting this vulnerability, an unauthenticated attacker could retrieve arbitrary files from the target server.