Update pyload GHSA to repository format and keep web archive URL for sourcegraph

Chocapikk · Chocapikk · commit ae8b7966f815 · 2025-11-20T01:31:49.000+01:00
diff --git a/modules/exploits/linux/http/pyload_js2py_cve_2024_39205.rb b/modules/exploits/linux/http/pyload_js2py_cve_2024_39205.rb
@@ -40,7 +40,7 @@ def initialize(info = {})
           [ 'CVE', '2024-39205' ],
           [ 'CVE', '2024-28397' ],
           [ 'URL', 'https://github.com/Marven11/CVE-2024-39205-Pyload-RCE' ],
-          [ 'GHSA', 'w7hq-f2pj-c53g' ],
+          [ 'GHSA', 'w7hq-f2pj-c53g', 'pyload/pyload' ],
           [ 'URL', 'https://github.com/Marven11/CVE-2024-28397-js2py-Sandbox-Escape' ],
         ],
         'DisclosureDate' => '2024-10-28',
diff --git a/modules/exploits/linux/http/sourcegraph_gitserver_sshcmd.rb b/modules/exploits/linux/http/sourcegraph_gitserver_sshcmd.rb
@@ -29,7 +29,7 @@ def initialize(info = {})
         ],
         'References' => [
           ['CVE', '2022-23642'],
-          ['GHSA', 'qcmp-fx72-q8q9', 'sourcegraph/sourcegraph'],
+          ['URL', 'http://web.archive.org/web/20230705082819/https://github.com/sourcegraph/sourcegraph/security/advisories/GHSA-qcmp-fx72-q8q9'],
           ['URL', 'https://github.com/Altelus1/CVE-2022-23642'],
         ],
         'DisclosureDate' => '2022-02-18', # Public disclosure
