From 5311b7014ec947fb40ceb48662a0f7c3b19e6408 Mon Sep 17 00:00:00 2001
From: bwatters-r7 <bwatters@rapid7.com>
Date: Wed, 11 Dec 2024 07:37:43 -0600
Subject: [PATCH] Add CVE info to projectsend module

---
 modules/exploits/linux/http/projectsend_unauth_rce.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/modules/exploits/linux/http/projectsend_unauth_rce.rb b/modules/exploits/linux/http/projectsend_unauth_rce.rb
index eab3ed361ea9..ddde94cdf137 100644
--- a/modules/exploits/linux/http/projectsend_unauth_rce.rb
+++ b/modules/exploits/linux/http/projectsend_unauth_rce.rb
@@ -24,6 +24,7 @@ def initialize(info = {})
           'ostrichgolf' # Metasploit module
         ],
         'References' => [
+          ['CVE', '2024-11680'],
           ['URL', 'https://github.com/projectsend/projectsend/commit/193367d937b1a59ed5b68dd4e60bd53317473744'],
           ['URL', 'https://www.synacktiv.com/sites/default/files/2024-07/synacktiv-projectsend-multiple-vulnerabilities.pdf'],
         ],