infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Correct error check logic

bug/bundler_fix
Meatballs 2014-02-07 21:58:33 +00:00
parent 443a51bbf5
commit a0f47f6b2b
No known key found for this signature in database
GPG Key ID: 5380EAF01F2F8B38
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
modules/exploits/multi/http/mediawiki_thumb.rb
View File

@ -206,7 +206,7 @@ class Metasploit3 < Msf::Exploit::Remote
wp_login_token = get_html_value(response.body, 'input', 'wpLoginToken', 'value')
unless wp_login_token
if wp_login_token.blank?
fail_with(Failure::UnexpectedReply, "Couldn't find login token. Is URI set correctly?")
else
print_good("Retrieved login CSRF token.")
@ -259,7 +259,7 @@ class Metasploit3 < Msf::Exploit::Remote
wp_upload = get_html_value(upload_file.body, 'input', 'wpUpload', 'value')
title = get_html_value(upload_file.body, 'input', 'title', 'value')
if upload_csrf && wp_edit_token
if upload_csrf && !wp_edit_token.blank?
print_good("Retrieved upload CSRF token.")
elsif upload_csrf
fail_with(Failure::UnexpectedReply, "Couldn't find upload token. Is URI set correctly?")
@ -296,7 +296,7 @@ class Metasploit3 < Msf::Exploit::Remote
print_good("File uploaded to #{location}")
else
if upload.body.include? 'not a permitted file type'
fail_with(Failure::NotVulnerable, "Wiki is not configured for DjVu files.")
fail_with(Failure::NotVulnerable, "Wiki is not configured for target files.")
else
fail_with(Failure::UnexpectedReply, "Failed to upload file.")
end