Add disclosure link

modules/auxiliary/admin/http/arris_motorola_surfboard_backdoor_xss.rb

@@ -46,7 +46,8 @@ class Metasploit3 < Msf::Auxiliary
       'References' => [
         [ 'CVE', '2015-0964' ], # XSS vulnerability
         [ 'CVE', '2015-0965' ], # CSRF vulnerability
-        [ 'CVE', '2015-0966' ]  # "techician/yZgO8Bvj" web interface backdoor
+        [ 'CVE', '2015-0966' ],  # "techician/yZgO8Bvj" web interface backdoor
+        [ 'URL', 'https://community.rapid7.com/rapid7_blogpostdetail?id=a111400000AanBs'] # Original disclosure
       ]
     ))