From 81fa068ef0a0669c2deb124e3fcd9efdbeb5281d Mon Sep 17 00:00:00 2001
From: h00die <mike@shorebreaksecurity.com>
Date: Wed, 15 Jun 2016 12:27:31 -0400
Subject: [PATCH] pulling out the get params

---
 modules/exploits/linux/http/op5_config_exec.rb | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/modules/exploits/linux/http/op5_config_exec.rb b/modules/exploits/linux/http/op5_config_exec.rb
index d683268f01..a81e4a090d 100644
--- a/modules/exploits/linux/http/op5_config_exec.rb
+++ b/modules/exploits/linux/http/op5_config_exec.rb
@@ -91,9 +91,13 @@ class MetasploitModule < Msf::Exploit::Remote
 
       # login
       res = send_request_cgi(
-        'uri'       => normalize_uri(target_uri.path, 'monitor/index.php/auth/login?uri=tac%2Findex'),
+        'uri'       => normalize_uri(target_uri.path, 'monitor/index.php/auth/login'),
         'method'    => 'POST',
-        'vars_post'  =>
+        'vars_get'  =>
+        {
+          'uri' => 'tac/index'
+        },
+        'vars_post' =>
         {
           'csrf_token' => '',
           'username'   => datastore['USERNAME'],