From e62038cfe5fef7f353c1929069d31c8ebdd47dbb Mon Sep 17 00:00:00 2001
From: tastyrce <103432514+tastyrce@users.noreply.github.com>
Date: Thu, 27 Mar 2025 02:01:03 -0400
Subject: [PATCH] improve version parsing

---
 modules/exploits/multi/http/cmsms_file_manager_auth_rce.rb | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/modules/exploits/multi/http/cmsms_file_manager_auth_rce.rb b/modules/exploits/multi/http/cmsms_file_manager_auth_rce.rb
index 4fd84267b2..bda3a697db 100644
--- a/modules/exploits/multi/http/cmsms_file_manager_auth_rce.rb
+++ b/modules/exploits/multi/http/cmsms_file_manager_auth_rce.rb
@@ -83,7 +83,8 @@ class MetasploitModule < Msf::Exploit::Remote
     set_cookie = res.get_cookies
     return CheckCode::Safe unless set_cookie&.match?(/^CMSSESSID/)
 
-    version = Rex::Version.new(res.body.scan(%r{CMS Made Simple</a> version (\d+\.\d+\.\d+)}).flatten.first)
+    html = res.get_html_document
+    version = Rex::Version.new(html.at('p.copyright-info').text.scan(/\d+\.\d+\.\d+/).first)
     vprint_status("#{peer} - CMS Made Simple Version: #{version}")
 
     return CheckCode::Appears if version <= Rex::Version.new('2.2.21')