Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #1816 from beefproject/yaml_safe_load

Browse Source 
Replaced yaml.load with yaml.safe_load
This commit is contained in:
jcrew99
2020-01-03 12:56:30 +10:00
committed by GitHub
parent ba15644e32 f608cacb2f
commit 8e783ad2bd
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
Rakefile
View File

@@ -115,7 +115,7 @@ task :beef_start => 'beef' do
test_pass = ENV['TEST_BEEF_PASS'] || 'bad_fred_no_access'
# write a rake config file for beef
config = YAML.load(File.read('./config.yaml'))
config = YAML.safe_load(File.read('./config.yaml'))
config['beef']['credentials']['user'] = test_user
config['beef']['credentials']['passwd'] = test_pass
Dir.mkdir('tmp') unless Dir.exists?('tmp')

2
extensions/metasploit/api.rb
View File

@@ -35,7 +35,7 @@ module BeEF
print_debug 'Attempting to use Metasploit exploits cache file'
raw = File.read(path)
begin
msf_module_config = YAML.load(raw)
msf_module_config = YAML.safe_load(raw)
rescue => e
print_error "[Metasploit] #{e.message}"
print_error e.backtrace