diff --git a/src/pentesting-cloud/aws-security/aws-privilege-escalation/aws-s3-privesc.md b/src/pentesting-cloud/aws-security/aws-privilege-escalation/aws-s3-privesc.md
index dcf4af0f08..01a3a6b4f7 100644
--- a/src/pentesting-cloud/aws-security/aws-privilege-escalation/aws-s3-privesc.md
+++ b/src/pentesting-cloud/aws-security/aws-privilege-escalation/aws-s3-privesc.md
@@ -62,7 +62,7 @@ So, if you have the permissions listed over these files, there is an attack vect
 Follow the description in the *Abusing Terraform State Files* section of the *Terraform Security* page for directly usable exploit code:
 
 {{#ref}}
-pentesting-ci-cd/terraform-security.md#abusing-terraform-state-files
+../../../pentesting-ci-cd/terraform-security.md#abusing-terraform-state-files
 {{#endref}}
 
 ### `s3:PutBucketPolicy`