Update modules/exploits/multi/http/spip_bigup_unauth_rce.rb

Co-authored-by: Julien Voisin <[email protected]>

Author: Chocapikk

modules/exploits/multi/http/spip_bigup_unauth_rce.rb

@@ -117,12 +117,11 @@ def check
   # It allows the user to specify a URL via the FORM_PAGE option (e.g., spip.php?article1).
   # We need to check multiple pages because the configuration of SPIP can vary.
   def get_form_data
-    pages = []
+    pages = %w[login spip_pass contact]
 
-    form_page = datastore['FORM_PAGE']
-    pages << form_page if form_page&.downcase != 'auto'
-
-    pages.concat(%w[login spip_pass contact]) if pages.empty?
+    if datastore['FORM_PAGE']&.downcase != 'auto'
+      pages = [datastore['FORM_PAGE']]
+    end
 
     pages.each do |page|
       url = normalize_uri(target_uri.path, page.start_with?('/') ? page : "spip.php?page=#{page}")