Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Liferay Login Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#panel#liferay#portal
Description

Liferay Login Panel - Detect

What is the "Liferay Login Panel - Detect" module?

The "Liferay Login Panel - Detect" module is designed to detect the presence of the Liferay login panel. Liferay is a portal software that allows organizations to build and manage web applications. This module focuses on identifying potential misconfigurations or vulnerabilities related to the Liferay login panel.

The severity of this module is classified as informative, meaning it provides valuable information but does not pose an immediate security risk.

This module was authored by organiccrap, dwisiswant0, and ricardomaia.

Impact

This module does not have a direct impact on the system. Instead, it helps identify potential security issues or misconfigurations related to the Liferay login panel. By detecting these issues, administrators can take appropriate actions to mitigate any risks and ensure the secure operation of their Liferay portal.

How does the module work?

The "Liferay Login Panel - Detect" module utilizes HTTP request templates and matching conditions to identify the presence of the Liferay login panel. It sends a GET request to the "/api/jsonws/invoke" endpoint within the Liferay portal.

The module includes the following matching conditions:

- Header Matcher: Checks if the "Liferay-Portal" header is present, indicating the request is being made to a Liferay portal. - Body Matcher: Looks for specific words or phrases in the response body, such as "", "There are no services matching that phrase.", or "Unable to deserialize object". If any of these words or phrases are found, it indicates a potential issue with the Liferay login panel.

If any of the matching conditions are met, the module reports a vulnerability.

For example, the module sends a GET request to "/api/jsonws/invoke" and checks if the response contains the expected headers and body content. If the response matches the defined conditions, the module identifies a potential vulnerability or misconfiguration related to the Liferay login panel.

For more information about Liferay, you can visit their official website: https://www.liferay.com/

You can also refer to the following GitHub repository for additional details: https://github.com/mzer0one/CVE-2020-7961-POC

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/api/jsonws/api/jsonws/invoke
Matching conditions
word: Liferay-Portalor
word: <title>json-web-services-api</title>, Th...
Passive global matcher
No matching conditions.
On match action
Report vulnerability