Land #2593, updated refs for @brandonprry's stuff

rapid7 · Oct 30, 2013 · b3c4dfc · b3c4dfc
2 parents 7838131 + 344413b
commit b3c4dfc
Show file tree

Hide file tree

Showing 7 changed files with 17 additions and 6 deletions.
diff --git a/modules/exploits/multi/http/openbravo_xxe.rb → ...les/auxiliary/admin/http/openbravo_xxe.rb b/modules/exploits/multi/http/openbravo_xxe.rb → ...les/auxiliary/admin/http/openbravo_xxe.rb
@@ -27,6 +27,11 @@ def initialize(info = {})
         [
           'Brandon Perry <bperry.volatile[at]gmail.com>' # Discovery / msf module
         ],
+      'References' =>
+        [
+          ['CVE', '2013-3617'],
+          ['URL', 'https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-tricks-and-treats']
+        ],
       'License' => MSF_LICENSE,
       'DisclosureDate' => 'Oct 30 2013'
     ))

diff --git a/modules/exploits/multi/http/ispconfig_php_exec.rb b/modules/exploits/multi/http/ispconfig_php_exec.rb
@@ -27,7 +27,8 @@ def initialize(info = {})
       'License' => MSF_LICENSE,
       'References' =>
         [
-          ['CVE', '2013-3629']
+          ['CVE', '2013-3629'],
+          ['URL', 'https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-tricks-and-treats']
         ],
       'Privileged' => false,
       'Platform'	 => ['php'],

diff --git a/modules/exploits/multi/http/moodle_cmd_exec.rb b/modules/exploits/multi/http/moodle_cmd_exec.rb
@@ -35,8 +35,9 @@ def initialize(info={})
       ],
     'References'     =>
       [
-        ['URL', 'http://www.exploit-db.com/exploits/28174/'], #xss vuln allowing sesskey of admins to be stolen
-        ['CVE', '2013-3630']
+        ['CVE', '2013-3630'],
+        ['EDB', '28174'], #xss vuln allowing sesskey of admins to be stolen
+        ['URL', 'https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-tricks-and-treats']
       ],
     'Payload'        =>
     {

diff --git a/modules/exploits/multi/http/nas4free_php_exec.rb b/modules/exploits/multi/http/nas4free_php_exec.rb
@@ -26,7 +26,8 @@ def initialize(info = {})
       'License'        => MSF_LICENSE,
       'References'     =>
         [
-          ['CVE', '2013-3631']
+          ['CVE', '2013-3631'],
+          ['URL', 'https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-tricks-and-treats']
         ],
       'Payload'	=>
         {

diff --git a/modules/exploits/multi/http/openmediavault_cmd_exec.rb b/modules/exploits/multi/http/openmediavault_cmd_exec.rb
@@ -25,7 +25,8 @@ def initialize(info={})
         ],
       'References'     =>
         [
-          ['CVE', '2013-3632']
+          ['CVE', '2013-3632'],
+          ['URL', 'https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-tricks-and-treats']
         ],
       'Privileged' => true,
       'DefaultOptions' => { 'WfsDelay' => 60 },

diff --git a/modules/exploits/multi/http/vtiger_php_exec.rb b/modules/exploits/multi/http/vtiger_php_exec.rb
@@ -27,6 +27,7 @@ def initialize(info = {})
       'License' => MSF_LICENSE,
       'References' =>
         [
+          ['URL', 'https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-tricks-and-treats']
         ],
       'Privileged' => false,
       'Platform'   => ['php'],

diff --git a/modules/exploits/multi/http/zabbix_script_exec.rb b/modules/exploits/multi/http/zabbix_script_exec.rb
@@ -27,7 +27,8 @@ def initialize(info={})
         ],
       'References'     =>
         [
-          ['CVE', '2013-3628']
+          ['CVE', '2013-3628'],
+          ['URL', 'https://community.rapid7.com/community/metasploit/blog/2013/10/30/seven-tricks-and-treats']
         ],
       'Payload'        =>
       {