Fix: it needs at least 2 follows redirect

heyder · heyder · commit c95360133512 · 2024-12-08T00:13:12.000+01:00
diff --git a/modules/exploits/multi/http/wso2_api_manager_file_upload_rce.rb b/modules/exploits/multi/http/wso2_api_manager_file_upload_rce.rb
@@ -182,7 +182,7 @@ def authenticate
       'vars_post' => auth_data
     }
 
-    res = send_request_cgi!(opts, 20, 1) # timeout and redirect_depth
+    res = send_request_cgi!(opts, 20, 2) # timeout and redirect_depth
 
     if res&.get_cookies && res.get_cookies.match(/:?WSO2_AM_TOKEN_1_Default=([\w|-]+);\s/)
       vprint_status('Got bearer token')

Original file line number	Diff line number	Diff line change
`@@ -182,7 +182,7 @@ def authenticate`
`182`	`182`	`'vars_post' => auth_data`
`183`	`183`	`}`
`184`	`184`
`185`		`- res = send_request_cgi!(opts, 20, 1) # timeout and redirect_depth`
	`185`	`+ res = send_request_cgi!(opts, 20, 2) # timeout and redirect_depth`
`186`	`186`
`187`	`187`	`if res&.get_cookies && res.get_cookies.match(/:?WSO2_AM_TOKEN_1_Default=([\w\|-]+);\s/)`
`188`	`188`	`vprint_status('Got bearer token')`