Add IP to testing results

When specifying multiple hosts the resulting output is useless because you don't know which bypass goes to what IP address
2015-09-30 15:22:24 -04:00 · 2015-09-30 15:22:24 -04:00 · 1bfa087518
parent 838bba14b3
commit 1bfa087518
1 changed files with 2 additions and 2 deletions
--- a/modules/auxiliary/scanner/http/verb_auth_bypass.rb
+++ b/modules/auxiliary/scanner/http/verb_auth_bypass.rb
@ -77,10 +77,10 @@ class Metasploit3 < Msf::Auxiliary

      next if not resauth

-      print_status("Testing verb #{tv}, resp code: [#{resauth.code}]")
+      print_status("[#{ip}] Testing verb #{tv}, resp code: [#{resauth.code}]")

      if resauth.code != auth_code and resauth.code <= 302
-        print_status("Possible authentication bypass with verb #{tv} code #{resauth.code}")
+        print_good("[#{ip}] Possible authentication bypass with verb #{tv} code #{resauth.code}")

        # Unable to use report_web_vuln as method is not in list of allowed methods.