Fixed both include() (File Inclusion) && move_uploaded_file() issue

s4n7h0 / xvwa

XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.

GNU General Public License v3.0

1.7k stars 339 forks source link

Fixed both include() (File Inclusion) && move_uploaded_file() issue #34

Closed Anon-Exploiter closed 5 years ago

Anon-Exploiter commented 6 years ago

Fixed both include() (File Inclusion) && move_uploaded_file() issue -- include() error was due to an extra /xvwa in line 18 of header.php file. -- move_uploaded_file() was due to no directory uploads in /xvwa/img/uploads/

s4n7h0 commented 5 years ago

The path xvwa is not extra. This is intended root path of the code. Closing this PR as this will be tracked here to avoid duplicates. https://github.com/s4n7h0/xvwa/pull/29#issuecomment-507339941