Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "default-wamp-server-page" module is a test case designed to detect misconfigurations in Wamp server, which can potentially expose sensitive information. Wamp server is a popular web development environment used to run PHP applications on. This module focuses on identifying vulnerabilities in the default configuration of Wamp server.
Severity: Medium
If misconfigurations are found in the Wamp server, sensitive information may be exposed, leading to potential security risks. Attackers could gain unauthorized access to the server or obtain sensitive data stored within it.
The "default-wamp-server-page" module works by sending HTTP requests to the target server and analyzing the responses. It uses specific matching conditions to identify misconfigurations in the Wamp server.
Example HTTP request:
GET / HTTP/1.1
Host: target-server.com
The module's matching conditions include:
- The response body must contain the string "wampserver". - The response status code must be 200.If both conditions are met, the module will report a potential misconfiguration in the Wamp server.