Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "JBoss jBPM Administration Console Login Panel - Detect" module is designed to detect the presence of the JBoss jBPM Administration Console login panel. This module targets the JBoss jBPM Administration Console, which is a web-based interface used for managing and administering jBPM (Java Business Process Management) applications.
This module has an informative severity level, meaning it provides information about the presence of the login panel without indicating any specific vulnerabilities or misconfigurations.
This module was authored by DhiyaneshDK.
The detection of the JBoss jBPM Administration Console login panel does not directly imply any impact or risk. It simply indicates the presence of the login panel, which may be used for accessing and managing jBPM applications.
The "JBoss jBPM Administration Console Login Panel - Detect" module works by sending an HTTP GET request to the "/jbpm-console/app/tasks.jsf" path. It then applies two matching conditions to determine if the JBoss jBPM Administration Console login panel is present:
If both matching conditions are met, the module reports the detection of the JBoss jBPM Administration Console login panel.
Example HTTP request:
GET /jbpm-console/app/tasks.jsf
The module then checks the response body for the phrase "JBoss jBPM Administration Console" and ensures that the response status code is 200.