Kiwi TCMS Login Panel - Detect

What is the "Kiwi TCMS Login Panel - Detect?" module?

The "Kiwi TCMS Login Panel - Detect" module is designed to detect the presence of the Kiwi TCMS login panel. Kiwi TCMS is a software used for test case management. This module focuses on identifying the login panel specifically.

This module has an informative severity level, meaning it provides valuable information but does not indicate a vulnerability or misconfiguration.

Author: pdteam

Impact

The impact of detecting the Kiwi TCMS login panel is limited. It does not indicate any immediate security risks or vulnerabilities. Instead, it serves as an informative module to identify the presence of the login panel.

How does the module work?

The module works by sending an HTTP GET request to the "/accounts/login/" path. It then applies a matching condition to check if the response contains the phrase "Kiwi TCMS". If the condition is met, the module reports the detection of the Kiwi TCMS login panel.

Example HTTP request:

GET /accounts/login/ HTTP/1.1
Host: [target_host]

The matching condition used in this module is a word match, specifically looking for the presence of the phrase "Kiwi TCMS" in the response. If the phrase is found, the module considers the login panel detected.

Metadata:

- max-request: 1 - shodan-query: title:"Kiwi TCMS - Login",http.favicon.hash:-1909533337

Reference:

- https://kiwitcms.org