diff --git a/src/pentesting-web/http-request-smuggling/README.md b/src/pentesting-web/http-request-smuggling/README.md
index 36c9bd842..48757cd50 100644
--- a/src/pentesting-web/http-request-smuggling/README.md
+++ b/src/pentesting-web/http-request-smuggling/README.md
@@ -309,7 +309,7 @@ X
 このヘッダが http desync を利用するのにどう役立つかは以下を参照:
 
 {{#ref}}
-../special-http-headers.md
+../../network-services-pentesting/pentesting-web/special-http-headers.md
 {{#endref}}
 
 ### HTTP Request Smuggling 脆弱性のテスト
@@ -415,7 +415,8 @@ Some front-ends only reuse the upstream connection when the client reuses theirs
 >
 >{{#ref}}
 >../http-connection-request-smuggling.md
->{{#endref}}
+>
+{{#endref}}
 
 ### Client‑side desync constraints