diff --git a/src/pentesting-web/http-request-smuggling/README.md b/src/pentesting-web/http-request-smuggling/README.md
index 60f3f163e..baf6089ed 100644
--- a/src/pentesting-web/http-request-smuggling/README.md
+++ b/src/pentesting-web/http-request-smuggling/README.md
@@ -310,7 +310,7 @@ X
 Überprüfe, wie dieser Header beim Ausnutzen einer HTTP-Desynchronisation helfen kann in:
 
 {{#ref}}
-../special-http-headers.md
+../../network-services-pentesting/pentesting-web/special-http-headers.md
 {{#endref}}
 
 ### HTTP Request Smuggling Vulnerability Testing
@@ -411,7 +411,8 @@ Some front-ends only reuse the upstream connection when the client reuses theirs
 >
 >{{#ref}}
 >../http-connection-request-smuggling.md
->{{#endref}}
+>
+{{#endref}}
 
 ### Client‑side desync constraints