WiP: moinmoin gitlist stretch

2026-02-22 11:48:17 +00:00 · 2018-03-22 17:02:56 +00:00
parent a0c6685944
commit 968dd4eb8e
6 changed files with 12 additions and 12 deletions
--- a/modules/vulnerabilities/unix/webapp/gitlist_040/manifests/apache.pp
+++ b/modules/vulnerabilities/unix/webapp/gitlist_040/manifests/apache.pp
@@ -3,7 +3,7 @@ class gitlist_040::apache {
  $port = $secgen_parameters['port'][0]
  $docroot = '/var/www/gitlist'

-  package { 'php5':
+  package { 'php':
    ensure => installed,
  }
  #
--- a/modules/vulnerabilities/unix/webapp/gitlist_040/secgen_metadata.xml
+++ b/modules/vulnerabilities/unix/webapp/gitlist_040/secgen_metadata.xml
@@ -49,12 +49,12 @@
  <msf_module>exploit/linux/http/gitlist_exec</msf_module>
  <hint>Visit the webapp in a browser at: ip:80/gitlist </hint>

-  <conflict>
-    <name>Stretch</name>
-  </conflict>
+  <!--<conflict>-->
+    <!--<name>Stretch</name>-->
+  <!--</conflict>-->

  <requires>
-    <module_path>.*apache</module_path>
+    <module_path>.*apache.*</module_path>
    <type>httpd</type>
  </requires>

--- a/modules/vulnerabilities/unix/webapp/moinmoin_195/secgen_metadata.xml
+++ b/modules/vulnerabilities/unix/webapp/moinmoin_195/secgen_metadata.xml
@@ -68,12 +68,12 @@
    Path traversal found in AttachFile module.
  </solution>

-  <conflict>
-    <name>Stretch</name>
-  </conflict>
+  <!--<conflict>-->
+    <!--<name>Stretch</name>-->
+  <!--</conflict>-->

  <requires>
-    <module_path>.*apache</module_path>
+    <module_path>.*apache.*</module_path>
    <type>httpd</type>
  </requires>

--- a/modules/vulnerabilities/unix/webapp/onlinestore/secgen_metadata.xml
+++ b/modules/vulnerabilities/unix/webapp/onlinestore/secgen_metadata.xml
@@ -144,7 +144,7 @@
  </requires>

  <requires>
-    <module_path>.*/mysql</module_path>
+    <module_path>.*/mysql_wheezy.*</module_path>
  </requires>

 </vulnerability>
--- a/scenarios/examples/vulnerability_examples/gitlist_webapp_vulnerability.xml
+++ b/scenarios/examples/vulnerability_examples/gitlist_webapp_vulnerability.xml
@@ -6,7 +6,7 @@

  <system>
    <system_name>file_server</system_name>
-    <base platform="linux" type="server"/>
+    <base platform="linux" type="server" module_path=".*stretch.*"/>

    <vulnerability module_path=".*gitlist_040"/>

--- a/scenarios/examples/vulnerability_examples/moinmoin_195_vulnerabilitiy.xml
+++ b/scenarios/examples/vulnerability_examples/moinmoin_195_vulnerabilitiy.xml
@@ -6,7 +6,7 @@

  <system>
    <system_name>file_server</system_name>
-    <base platform="linux" type="server"/>
+    <base platform="linux" type="server" module_path=".*stretch.*"/>

    <vulnerability module_path="vulnerabilities/unix/webapp/moinmoin_195"/>