DVWA1.9/1.10 - File upload vulnerability (high)

Hello All,

I just start to learn website hacking. I have tried my best to exploit file upload vulnerability with high security (in DVWA 1.9/1.10), but unable to exploit this one.

Methods I have tried

  1. double extension (ex: shell.php.jpeg)
  2. Null byte injection.

Could you please let me know the way to exploit this vulnerability in DVWA1.9 or 1.10.

Thank you in advance!

This maybe help: