Skip to content

Commit 03a9723

Browse files
jjarmocjjarmoc
committed
Update options to use OptEnum for HTTP_METHOD
1 parent 45db43d commit 03a9723

File tree

2 files changed

+2
-4
lines changed

2 files changed

+2
-4
lines changed

modules/exploits/multi/http/rails_json_yaml_code_exec.rb

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -55,8 +55,7 @@ def initialize(info = {})
5555
[
5656
Opt::RPORT(80),
5757
OptString.new('TARGETURI', [ true, 'The path to a vulnerable Ruby on Rails application', "/"]),
58-
OptString.new('HTTP_METHOD', [ true, 'The HTTP request method (GET, POST, PUT typically work)', "POST"])
59-
58+
OptEnum.new('HTTP_METHOD', [true, 'HTTP Method', 'POST', ['GET', 'POST', 'PUT'] ])
6059
], self.class)
6160

6261
end

modules/exploits/multi/http/rails_xml_yaml_code_exec.rb

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -53,8 +53,7 @@ def initialize(info = {})
5353
[
5454
Opt::RPORT(80),
5555
OptString.new('URIPATH', [ true, 'The path to a vulnerable Ruby on Rails application', "/"]),
56-
OptString.new('HTTP_METHOD', [ true, 'The HTTP request method (GET, POST, PUT typically work)', "POST"])
57-
56+
OptEnum.new('HTTP_METHOD', [true, 'HTTP Method', 'POST', ['GET', 'POST', 'PUT'] ])
5857
], self.class)
5958

6059
register_evasion_options(

0 commit comments

Comments
 (0)