metasploit: how to use linux/http/webmin_backdoor


I am trying to gain access to a server using CVE-2019-15107 the exploit with help of metasploit. I tried to find examples of its usage, but I found none.

To explain a little. My machines ip is 192.168.109.133. I am connected to a vpn where I have access to the target at 192.168.208.32. At port 10000 Webmin is running with version 1.890, which is suseptible to this exploit.

I have set every required option, but it wont work, and I have no idea why.

enter image description here

This is the output after I exploit.

enter image description here

I have basically no idea what SRVHOST and SRVPORT is for. I don’t know what TARGETURI is either. So if someone could explain that in more detail for me I would appreciate it.