The task can be accessed at http://localhost/zadachi/6/.
It is a system for uploading files. The checks implemented in the system allow the users to load files only of a particular type.
The system processes the PATH GET parameter incorrectly.
Goal 1. Find a crucial vulnerability and investigate it.
Goal 2. Use only the http://localhost/zadachi/6/ system and exploit the vulnerability to obtain the source code of the INDEX.PHP file.