Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The Drupal Install module is designed to detect misconfigurations related to the Drupal content management system. It specifically targets the installation of Drupal and assesses the security of the installation. This module has a low severity level.
The Drupal Install module helps identify potential vulnerabilities or misconfigurations during the installation process of Drupal. By detecting these issues, it allows website administrators to take necessary actions to secure their Drupal installation and prevent potential security breaches.
The Drupal Install module works by sending an HTTP GET request to the "/install.php?profile=default" path. It then checks if the response contains the "" string. If this string is found, it indicates that the Drupal installation page is accessible, which may pose a security risk.
The module uses matching conditions to determine if the installation page is present. In this case, it uses a word matcher to search for the specific string in the response. If the condition is met, the module reports a vulnerability.
By utilizing this module, website administrators can proactively identify and address any potential security issues during the Drupal installation process.