Camunda Login Panel - Detect

What is the "Camunda Login Panel - Detect?"

The "Camunda Login Panel - Detect" module is designed to detect the presence of the Camunda login panel. Camunda is a software platform that provides workflow and business process management capabilities. This module focuses on identifying potential misconfigurations or vulnerabilities related to the login panel.

This module has an informative severity level, which means it provides valuable information but does not indicate a critical security issue.

Author: alifathi-h1

Impact

The impact of the Camunda login panel detection module is primarily informational. It helps users identify the presence of the login panel and potential security risks associated with it. By detecting misconfigurations or vulnerabilities, users can take appropriate actions to secure their Camunda installation.

How does the module work?

The module works by sending HTTP requests to specific paths associated with the Camunda login panel. It then applies matching conditions to determine if the login panel is present and functioning correctly.

Example HTTP request:

GET /app/welcome/default/#!/login

The module uses the following matching conditions:

- Matcher 1: It checks if the response contains the words "Camunda Welcome". - Matcher 2: It verifies if the response status is 200 (OK).

The module considers the login panel detected if both matching conditions are met.

For more information about Camunda's user management, refer to the Camunda documentation.

Metadata: max-request: 2