Lab 21
Lab Hint
Poison the log file with a PHP command. Load the log file using the insecure direct object reference in the Page parameter.
Videos
What is Insecure Direct Object Reference (IDOR)?
Mutillidae: Lab 21 Walkthrough