modules/exploits/linux/http/apache_druid_js_rce.rb from rapid7/metasploit-framework

modules/exploits/linux/http/apache_druid_js_rce.rb

Summary

Maintainability

4 hrs

Test Coverage

Issues
Source
Stats

Method `initialize` has 66 lines of code (exceeds 25 allowed). Consider refactoring.
Open

  def initialize(info = {})
    super(
      update_info(
        info,
        'Name' => 'Apache Druid 0.20.0 Remote Command Execution',

Found in modules/exploits/linux/http/apache_druid_js_rce.rb - About 2 hrs to fix

Method `execute_command` has 43 lines of code (exceeds 25 allowed). Consider refactoring.
Open

  def execute_command(cmd, _opts = {})
    gencmd = '/bin/sh`@~-c`@~' + cmd
    genvar = Rex::Text.rand_text_alpha(8..12)
    genname = Rex::Text.rand_text_alpha(8..12)
    vprint_status("cmd= #{gencmd}   var=#{genvar}   name=#{genname}")

Found in modules/exploits/linux/http/apache_druid_js_rce.rb - About 1 hr to fix

rapid7/metasploit-framework

Summary

Maintainability

Test Coverage

Method `initialize` has 66 lines of code (exceeds 25 allowed). Consider refactoring.
Open

Method `execute_command` has 43 lines of code (exceeds 25 allowed). Consider refactoring.
Open

There are no issues that match your filters.

Category

Status

rapid7/metasploit-framework

Summary

Maintainability

Test Coverage

Method initialize has 66 lines of code (exceeds 25 allowed). Consider refactoring. Open

Method execute_command has 43 lines of code (exceeds 25 allowed). Consider refactoring. Open

There are no issues that match your filters.

Category

Status

Method `initialize` has 66 lines of code (exceeds 25 allowed). Consider refactoring.
Open

Method `execute_command` has 43 lines of code (exceeds 25 allowed). Consider refactoring.
Open