Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Kiwi TCMS Login Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#kiwitcms#panel
Description

What is the "Kiwi TCMS Login Panel - Detect?" module?

The "Kiwi TCMS Login Panel - Detect" module is designed to detect the presence of the Kiwi TCMS login panel. Kiwi TCMS is a software used for test case management. This module focuses on identifying the login panel specifically.

This module has an informative severity level, meaning it provides valuable information but does not indicate a vulnerability or misconfiguration.

Author: pdteam

Impact

The impact of detecting the Kiwi TCMS login panel is limited. It does not indicate any immediate security risks or vulnerabilities. Instead, it serves as an informative module to identify the presence of the login panel.

How does the module work?

The module works by sending an HTTP GET request to the "/accounts/login/" path. It then applies a matching condition to check if the response contains the phrase "Kiwi TCMS". If the condition is met, the module reports the detection of the Kiwi TCMS login panel.

Example HTTP request:

GET /accounts/login/ HTTP/1.1
Host: [target_host]

The matching condition used in this module is a word match, specifically looking for the presence of the phrase "Kiwi TCMS" in the response. If the phrase is found, the module considers the login panel detected.

Metadata:

- max-request: 1 - shodan-query: title:"Kiwi TCMS - Login",http.favicon.hash:-1909533337

Reference:

- https://kiwitcms.org

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/accounts/login/
Matching conditions
word: Kiwi TCMS
Passive global matcher
No matching conditions.
On match action
Report vulnerability