Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Dynamicweb Login Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#panel#dynamicweb
Description

What is the "Dynamicweb Login Panel - Detect?"

The "Dynamicweb Login Panel - Detect" module is designed to detect the presence of the Dynamicweb login panel. Dynamicweb is a software platform used for building and managing websites, e-commerce solutions, and digital marketing tools. This module focuses on identifying potential misconfigurations or vulnerabilities related to the login panel.

The severity of this module is classified as informative, meaning it provides valuable information but does not pose an immediate security risk.

This module was authored by pdteam.

Impact

The impact of the Dynamicweb login panel detection module is primarily informational. It helps identify the presence of the login panel, which can be useful for further analysis and security assessments. However, it does not directly indicate any specific security vulnerabilities or misconfigurations.

How does the module work?

The module works by sending an HTTP request to the target website's "/Admin/Access/default.aspx" endpoint. It then applies matching conditions to determine if the response contains the keyword "Dynamicweb" in the body and if the response status is 200 (OK).

Example HTTP request:

GET /Admin/Access/default.aspx HTTP/1.1
Host: <Hostname>
Accept-Encoding: gzip, deflate

The matching conditions for this module are:

- The response body must contain the keyword "Dynamicweb". - The response status must be 200 (OK).

If both conditions are met, the module will report the detection of the Dynamicweb login panel.

For more information, you can refer to the Dynamicweb website.

Metadata:

- Max-request: 1 - Shodan-query: http.component:"Dynamicweb"

Module preview

Concurrent Requests (1)
1. HTTP Request template
Raw request
Matching conditions
word: Dynamicweband
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability