Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Healthchecks UI Exposure

By kannthu

Low
Vidoc logoVidoc Module
#misconfig#exposure
Description

What is the "Healthchecks UI Exposure?"

The "Healthchecks UI Exposure" module is designed to detect potential misconfigurations in the Health Checks UI software. It focuses on identifying any exposure or vulnerabilities that may exist within the UI. This module has a low severity level and was created by an unknown author.

Impact

If a misconfiguration or vulnerability is detected in the Health Checks UI software, it could potentially lead to unauthorized access, data leaks, or other security breaches. It is important to address any issues identified by this module to ensure the security and integrity of the software.

How the module works?

The "Healthchecks UI Exposure" module works by sending HTTP requests to the target software and analyzing the responses. It uses specific matching conditions to determine if any misconfigurations or vulnerabilities are present.

One of the matching conditions used by this module is a word matcher that looks for the presence of specific phrases, such as "Health Checks UI" and "var webhookEndpoint", in the body of the HTTP response. Additionally, it checks if the HTTP response status is 200.

Here is an example of an HTTP request that may be sent by this module:

GET /healthchecks HTTP/1.1
Host: example.com
User-Agent: Vidoc-Scanner

If the matching conditions are met, the module will report a potential misconfiguration or vulnerability in the Health Checks UI software.

Module preview

Concurrent Requests (0)
Passive global matcher
word: Health Checks UI, var webhookEndpointand
status: 200
On match action
Report vulnerability