Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "ColdFusion Administrator Login Panel - Detect" module is designed to detect the presence of the ColdFusion Administrator login panel. ColdFusion Administrator is a web-based interface used to manage and configure ColdFusion servers. This module specifically targets the login panel of the ColdFusion Administrator.
The severity of this module is classified as informative, meaning it provides information about the presence of the login panel but does not indicate any specific vulnerability or misconfiguration.
This module was authored by dhiyaneshDK.
The impact of detecting the ColdFusion Administrator login panel is primarily informational. It indicates that the login panel is accessible and can be used to manage the ColdFusion server. However, it does not provide any information about the security posture or potential vulnerabilities of the server.
The "ColdFusion Administrator Login Panel - Detect" module works by sending HTTP requests to the target server and matching the responses against predefined conditions. The module uses two matching conditions:
By combining these matching conditions, the module determines whether the ColdFusion Administrator login panel is present on the target server.
Example HTTP request:
GET /admin/login.cfm HTTP/1.1
Host: example.com
The module sends this request to the target server and checks the response for the matching conditions.