Update modules/exploits/multi/http/wp_givewp_rce.rb

Co-authored-by: Julien Voisin <[email protected]>

Author: Chocapikk

modules/exploits/multi/http/wp_givewp_rce.rb

@@ -16,12 +16,7 @@ def initialize(info = {})
         info,
         'Name' => 'GiveWP Unauthenticated Donation Process Exploit',
         'Description' => %q{
-          The GiveWP Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to a PHP Object Injection (POI) attack.
-          This vulnerability exists in all versions up to and including 3.14.1 due to improper handling of untrusted input in the 'give_title' parameter.
-          The flaw allows unauthenticated attackers to inject a PHP object via the deserialization of this parameter.
-          Exploiting this vulnerability can lead to arbitrary code execution, as the PHP Object Injection is leveraged to trigger a chain of property-oriented programming (POP) that facilitates remote code execution (RCE).
-          Additionally, the attacker may gain the ability to delete arbitrary files on the affected server.
-          This module interacts with the vulnerable endpoint by exploiting this weakness to execute arbitrary code on the server, potentially leading to full server compromise.
+          The GiveWP Donation Plugin and Fundraising Platform plugin for WordPress in all versions up to and including 3.14.1 is vulnerable to a PHP Object Injection (POI) attack granting an unauthenticated arbitrary code execution. 
         },
 
         'License' => MSF_LICENSE,