PHP security exploit - list content of remote PHP file?

Question

I\'m trying to exploit some web vulnerabilities in a sample website running inside a VM (it is not available on the web - only for educational purposes). I have a php file n

Answer 1

It is not. The php file is getting executed because you call include, if you called readfile, file_get_contents or similar you could see the contents of the php file.