Method update_configuration has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def update_configuration(mode)
    # We need to update the configuration in order for our changes to take effect
    xml_doc = Nokogiri::XML::Builder.new do |xml|
      xml.event('xmlns' => 'http://xmlns.opennms.org/xsd/event') do
        xml.uei('uei.opennms.org/internal/reloadDaemonConfig')

• Read up
  Read up

Method exploit has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def exploit
    res = send_request_cgi({
      'uri' => normalize_uri(target_uri.path, 'accounts', 'login/')
    })

• Read up
  Read up

Method check has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def check
    cevap = send_packet('GET', '', 10)
    if cevap.nil? || cevap.body.empty?
      return CheckCode::Unknown('No response from the target!')
    end

• Read up
  Read up

Method check has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def check
    res = send_request_cgi(
      'method' => 'GET',
      'uri' => normalize_uri(target_uri.path,
                             '/webadmin/tools/systemstatus_remote.php'),

• Read up
  Read up

Method grab_config has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def grab_config(user,pass)
    print_status("#{rhost}:#{rport} - Trying to download the original configuration")
    begin
      res = send_request_cgi({
        'uri'     => '/BAS_pppoe.htm',

• Read up
  Read up

Method check has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def check
    print_status("Checking if #{peer} can be exploited.")
    res = check_vuln
    return CheckCode::Unknown('No response received from the target.') unless res
    return CheckCode::Safe unless res.code == 200 && !res.body.blank? && res.body =~ /<c123>/

• Read up
  Read up

Method detect_username has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def detect_username
    vprint_status('User auto-detection...')
    res = fortinet_request(
      'method' => 'GET',
      'uri' => normalize_uri(target_uri.path, '/system/admin')

• Read up
  Read up

Method select_aggregator has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def select_aggregator
    # check the configured aggregators and select one at random
    res = send_request_cgi({
      'method' => 'GET',
      'uri' => normalize_uri(target_uri.path, 'aggregators')

• Read up
  Read up

Method check has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def check
    res = smb_fingerprint

    unless res['native_lm'] =~ /Samba ([\d\.]+)/
      print_error("does not appear to be Samba: #{res['os']} / #{res['native_lm']}")

• Read up
  Read up

Method call has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def call(dcerpc, function, data, do_recv = true)

    frag_size = data.length
    if dcerpc.options['frag_size']
      frag_size = dcerpc.options['frag_size']

• Read up
  Read up

Method select_metric has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def select_metric
    # check if any metrics have been configured. if not, exploitation cannot work
    res = send_request_cgi({
      'method' => 'GET',
      'uri' => normalize_uri(target_uri.path, 'suggest'),

• Read up
  Read up

Method check has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def check
    connect
    # they are only vulnerable if we can run the CONFIG command, so try that
    return Exploit::CheckCode::Safe unless (config_data = redis_command('CONFIG', 'GET', '*')) && config_data =~ /dbfilename/

• Read up
  Read up

Method enumerate_directories has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def enumerate_directories(share)
    begin
      vprint_status('Use Rex client (SMB1 only) to enumerate directories, since it is not compatible with RubySMB client')
      connect(versions: [1])
      smb_login

• Read up
  Read up

Method parse_discovered_response has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def parse_discovered_response(res)
    info = {}

    return unless res.start_with? 'discovered'

• Read up
  Read up

Method success? has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def success?(conn, key_based)
    if conn
      print_good 'Successful login'
      service_data = {
        address: rhost,

• Read up
  Read up

Method smtp_send has 6 arguments (exceeds 4 allowed). Consider refactoring.

Open

  def smtp_send(prefix, arg_prefix = nil, arg_pattern = nil, arg_suffix = nil, suffix = nil, arg_length = nil)

Method run has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def run
    # Get device prompt
    prompt = session.shell_command('')

    # Set terminal length to 0 so no paging is required

• Read up
  Read up

Method run has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def run
    # Certain shells for certain platform
    vprint_status('Determining session platform and type')
    case session.platform
    when 'unix', 'linux', 'bsd'

• Read up
  Read up

Method gathernix has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def gathernix
    print_status('Unix OS detected')
    files = cmd_exec('locate settings.xml').split("\n")
    # Handle case where locate does not exist (error is returned in first element)
    if files.length == 1 && !directory?(files.first)

• Read up
  Read up

Method setup has a Cognitive Complexity of 8 (exceeds 5 allowed). Consider refactoring.

Open

  def setup
    return unless session

    print_status "Collecting local exploits for #{session.session_type}..."

• Read up
  Read up