Fix finalize_admin

Author: Chocapikk

modules/exploits/multi/http/wp_suretriggers_auth_bypass.rb

@@ -221,32 +221,34 @@ def finalize_admin
     )
     vprint_good("Credential for user '#{datastore['WP_USER']}' stored successfully.")
 
+    report_host(host: datastore['RHOST'])
+
+    service = report_service(
+      host: datastore['RHOST'],
+      port: datastore['RPORT'],
+      proto: 'tcp',
+      name: fullname,
+      info: 'WordPress with vulnerable SureTriggers plugin allowing unauthenticated admin creation'
+    )
+
     loot_data = "Username: #{datastore['WP_USER']}, Password: #{datastore['WP_PASS']}\n"
     loot_path = store_loot(
       'wordpress.admin.created',
       'text/plain',
       datastore['RHOST'],
       loot_data,
       'wp_admin_credentials.txt',
-      'WordPress Created Admin Credentials'
+      'WordPress Created Admin Credentials',
+      service
     )
     vprint_good("Loot saved to: #{loot_path}")
 
-    report_host(host: datastore['RHOST'])
-
-    report_service(
-      host: datastore['RHOST'],
-      port: datastore['RPORT'],
-      proto: 'tcp',
-      name: fullname,
-      info: 'WordPress with vulnerable SureTriggers plugin allowing unauthenticated admin creation'
-    )
-
     report_vuln(
       host: datastore['RHOST'],
       port: datastore['RPORT'],
       proto: 'tcp',
-      name: 'SureTriggers Auth Bypass',
+      service: service,
+      name: "SureTriggers Auth Bypass (#{action.name})",
       refs: references,
       info: 'Unauthenticated admin creation via SureTriggers plugin'
     )