update more references

firefart · firefart · commit f9e8ac8f5813 · 2021-02-08T17:48:54.000+01:00
diff --git a/documentation/modules/auxiliary/admin/http/wp_gdpr_compliance_privesc.md b/documentation/modules/auxiliary/admin/http/wp_gdpr_compliance_privesc.md
@@ -1,6 +1,6 @@
 ## Description
 
-This module exploits the [Wordpress GDPR compliance plugin](https://wordpress.org/plugins/wp-gdpr-compliance/) lack of validation ([WPVDB 9144](https://wpvulndb.com/vulnerabilities/9144)), which affects versions 1.4.2 and lower.
+This module exploits the [Wordpress GDPR compliance plugin](https://wordpress.org/plugins/wp-gdpr-compliance/) lack of validation ([WPVDB 9144](https://wpscan.com/vulnerability/9144)), which affects versions 1.4.2 and lower.
 
 When a user triggers GDPR-related actions, Wordpress's `admin-ajax.php` is called but fails to do validation and capacity checks regarding the asked actions. This leads to any unauthenticated user being able to modify any arbitrary settings on the targeted server.
 
diff --git a/lib/msf/core/module/reference.rb b/lib/msf/core/module/reference.rb
@@ -111,7 +111,7 @@ def initialize(in_ctx_id = 'Unknown', in_ctx_val = '')
     elsif in_ctx_id == 'ZDI'
       self.site = "http://www.zerodayinitiative.com/advisories/ZDI-#{in_ctx_val}"
     elsif in_ctx_id == 'WPVDB'
-      self.site = "https://wpvulndb.com/vulnerabilities/#{in_ctx_val}"
+      self.site = "https://wpscan.com/vulnerability/#{in_ctx_val}"
     elsif in_ctx_id == 'PACKETSTORM'
       self.site = "https://packetstormsecurity.com/files/#{in_ctx_val}"
     elsif in_ctx_id == 'URL'
