fix path normalization and missing comma

rapid7 · Nov 2, 2024 · a74e167 · a74e167
1 parent 8f2f0c7
commit a74e167
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/modules/auxiliary/gather/onedev_arbitrary_file_read.rb b/modules/auxiliary/gather/onedev_arbitrary_file_read.rb
@@ -18,7 +18,7 @@ def initialize(info = {})
           can view existing projects without authentication.
           However, when anonymous access is disabled, an attacker who lacks prior knowledge of existing project names can use a brute-force approach.
           By providing a user-supplied wordlist, the module may be able to guess a valid project name and subsequently exploit the vulnerability.
-        }
+        },
         'Author' => [
           'vultza', # metasploit module
           'Siebene' # vuln discovery
@@ -74,7 +74,7 @@ def check
   def validate_project_exists(project)
     res = send_request_cgi({
       'method' => 'GET',
-      'uri' => normalize_uri(target_uri.path, "/#{project}", '/~site')
+      'uri' => normalize_uri(target_uri.path, project, '~site')
     })
 
     fail_with(Failure::Unreachable, 'Request timed out.') unless res