Thanks for taking a second to read this. More or less the story is like this:
There's an iframe that's being called from within a webpage. Source file is within a folder. More or less we need anything that's within this folder to not be evaluated.
So \folder\File.php > No Chance.
Thank you for anything you come up with.