Land rapid7#4777, @todb-r7's release fixes

wvu · wvu · commit be5a0ee9c2e3 · 2015-02-17T13:45:00.000-06:00
diff --git a/modules/exploits/unix/webapp/maarch_letterbox_file_upload.rb b/modules/exploits/unix/webapp/maarch_letterbox_file_upload.rb
@@ -15,7 +15,7 @@ class Metasploit3 < Msf::Exploit::Remote
   def initialize(info = {})
     super(update_info(
       info,
-      'Name'            => 'Maarch LetterBox 2.8 Unrestricted File Upload',
+      'Name'            => 'Maarch LetterBox Unrestricted File Upload',
       'Description'     => %q{
         This module exploits a file upload vulnerability on Maarch LetterBox 2.8 due to a lack of
         session and file validation in the file_to_index.php script. It allows unauthenticated
diff --git a/modules/exploits/unix/webapp/wp_photo_gallery_unrestricted_file_upload.rb b/modules/exploits/unix/webapp/wp_photo_gallery_unrestricted_file_upload.rb
@@ -16,12 +16,14 @@ class Metasploit3 < Msf::Exploit::Remote
   def initialize(info = {})
     super(update_info(
       info,
-      'Name'            => 'WordPress Photo Gallery 1.2.5 Unrestricted File Upload',
+      'Name'            => 'WordPress Photo Gallery Unrestricted File Upload',
       'Description'     => %q{Photo Gallery Plugin for WordPress contains a flaw that allows a
                               remote attacker to execute arbitrary PHP code. This flaw exists
                               because the photo-gallery\photo-gallery.php script allows access
                               to filemanager\UploadHandler.php. The post() method in UploadHandler.php
-                              does not properly verify or sanitize user-uploaded files.},
+                              does not properly verify or sanitize user-uploaded files.
+
+                              This module was tested on version 1.2.5.},
       'License'         => MSF_LICENSE,
       'Author'          =>
         [
diff --git a/modules/post/windows/gather/phish_windows_credentials.rb b/modules/post/windows/gather/phish_windows_credentials.rb
@@ -20,8 +20,8 @@ def initialize(info={})
       'License'       => MSF_LICENSE,
       'Author'        =>
             [
-              'Wesley Neelen <security[at]forsec.nl/@wez3forsec>', # Metasploit module
-              'Matt Nelson (@enigma0x3)'			   # Author original powershell script
+              'Wesley Neelen <security[at]forsec.nl', # Metasploit module, @wez3forsec on Twitter
+              'Matt Nelson'                           # Original powershell script, @enigma0x3 on Twitter
             ],
       'References'    => [ 'URL', 'https://forsec.nl/2015/02/windows-credentials-phishing-using-metasploit' ],
       'Platform'      => [ 'win' ],
