Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Detect Telerik Web UI Fileupload Handler

By kannthu

Informative
Vidoc logoVidoc Module
#tech#telerik#fileupload
Description

What is the "Detect Telerik Web UI Fileupload Handler?" module?

The "Detect Telerik Web UI Fileupload Handler" module is designed to detect the presence of the Telerik Web UI fileupload handler. Telerik Web UI is a software framework used for building web applications with rich user interfaces. This module specifically targets the fileupload handler component of the Telerik Web UI framework.

This module has an informative severity level, which means it provides valuable information but does not indicate a vulnerability or misconfiguration.

This module was authored by organiccrap.

Impact

This module does not have a direct impact on the target system. It simply detects the presence of the Telerik Web UI fileupload handler, providing information about its existence.

How does the module work?

The module works by sending an HTTP GET request to the path "/Telerik.Web.UI.WebResource.axd?type=rau". It then checks the response for a specific string match: "RadAsyncUpload handler is registered successfully". If this string is found in the response, the module considers the Telerik Web UI fileupload handler to be present.

Here is an example of the HTTP request sent by the module:

GET /Telerik.Web.UI.WebResource.axd?type=rau

The module uses a single matching condition, which requires the response to contain the exact string match mentioned above.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/Telerik.Web.UI.WebR...
Matching conditions
word: RadAsyncUpload handler is registered suc...
Passive global matcher
No matching conditions.
On match action
Report vulnerability