infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Fix to ensure authentication

GSoC/Meterpreter_Web_Console
Matthew Kienow 2018-12-28 16:29:33 -05:00
parent 2418dcf6aa
commit 12f4222b2e
No known key found for this signature in database
GPG Key ID: 40787F8B1EAC6E41
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
lib/msf/core/web_services/servlet/login_servlet.rb
View File

@ -21,6 +21,7 @@ module LoginServlet
def self.get_logins
lambda {
warden.authenticate!
begin
sanitized_params = sanitize_params(params, env['rack.request.query_hash'])
data = get_db.logins(sanitized_params)
@ -34,6 +35,7 @@ module LoginServlet
def self.create_login
lambda {
warden.authenticate!
begin
opts = parse_json_request(request, false)
opts[:core][:workspace] = get_db.workspaces(id: opts[:workspace_id]).first
@ -48,6 +50,7 @@ module LoginServlet
def self.update_login
lambda {
warden.authenticate!
begin
opts = parse_json_request(request, false)
tmp_params = sanitize_params(params)
@ -62,6 +65,7 @@ module LoginServlet
def self.delete_logins
lambda {
warden.authenticate!
begin
opts = parse_json_request(request, false)
data = get_db.delete_logins(opts)