Update werkzeug_debug_rce.rb

Grezzo · web-flow · commit 7838a943ce47 · 2024-12-08T21:01:17.000Z
Added comments about where version-dependant salts come from
diff --git a/modules/exploits/multi/http/werkzeug_debug_rce.rb b/modules/exploits/multi/http/werkzeug_debug_rce.rb
@@ -61,7 +61,7 @@ def initialize(info = {})
             {
               digest: Digest::SHA1,
               digest_inputs: :new,
-              salt: ' added salt'
+              salt: ' added salt' # From site-packages/werkzeug/debug/__init__.py > hash_pin()
             }
           ],
           # pip install werkzeug==1.0.1 flask==1.1.4
@@ -70,7 +70,7 @@ def initialize(info = {})
             {
               digest: Digest::MD5,
               digest_inputs: :new,
-              salt: 'shittysalt'
+              salt: 'shittysalt' # From site-packages/werkzeug/debug/__init__.py > hash_pin()
             }
           ],
           # pip install werkzeug==0.11.5 flask==0.12.5
@@ -79,7 +79,7 @@ def initialize(info = {})
             {
               digest: Digest::MD5,
               digest_inputs: :old,
-              salt: 'shittysalt'
+              salt: 'shittysalt' # From site-packages/werkzeug/debug/__init__.py > hash_pin()
             }
           ],
           # pip install werkzeug==0.10 flask==0.12.5

Original file line number	Diff line number	Diff line change
`@@ -61,7 +61,7 @@ def initialize(info = {})`
`61`	`61`	`{`
`62`	`62`	`digest: Digest::SHA1,`
`63`	`63`	`digest_inputs: :new,`
`64`		`- salt: ' added salt'`
	`64`	`+ salt: ' added salt' # From site-packages/werkzeug/debug/__init__.py > hash_pin()`
`65`	`65`	`}`
`66`	`66`	`],`
`67`	`67`	`# pip install werkzeug==1.0.1 flask==1.1.4`
`@@ -70,7 +70,7 @@ def initialize(info = {})`
`70`	`70`	`{`
`71`	`71`	`digest: Digest::MD5,`
`72`	`72`	`digest_inputs: :new,`
`73`		`- salt: 'shittysalt'`
	`73`	`+ salt: 'shittysalt' # From site-packages/werkzeug/debug/__init__.py > hash_pin()`
`74`	`74`	`}`
`75`	`75`	`],`
`76`	`76`	`# pip install werkzeug==0.11.5 flask==0.12.5`
`@@ -79,7 +79,7 @@ def initialize(info = {})`
`79`	`79`	`{`
`80`	`80`	`digest: Digest::MD5,`
`81`	`81`	`digest_inputs: :old,`
`82`		`- salt: 'shittysalt'`
	`82`	`+ salt: 'shittysalt' # From site-packages/werkzeug/debug/__init__.py > hash_pin()`
`83`	`83`	`}`
`84`	`84`	`],`
`85`	`85`	`# pip install werkzeug==0.10 flask==0.12.5`