Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "Live Helper Chat Admin Login Panel - Detect" module is designed to detect the presence of the Live Helper Chat admin login panel. Live Helper Chat is a software that provides live chat support on websites. This module focuses on identifying the admin login panel, which can be a potential security vulnerability if not properly secured.
This module has an informative severity level, meaning it provides valuable information but does not pose an immediate threat.
This module was authored by ritikchaddha.
The impact of detecting the Live Helper Chat admin login panel is that it reveals the presence of an access point that could potentially be exploited by unauthorized individuals. If the admin login panel is not properly secured, it may allow attackers to gain unauthorized access to the Live Helper Chat system and potentially compromise sensitive information or perform malicious actions.
The module works by sending an HTTP GET request to the "/site_admin/user/login" path of the target website. It then applies matching conditions to determine if the Live Helper Chat admin login panel is present.
The matching conditions for this module are:
- The response body must contain the words "Live Helper Chat" and "Please login". - The HTTP response status code must be 200 (OK).If both matching conditions are met, the module considers the Live Helper Chat admin login panel to be detected.
Example HTTP request:
GET /site_admin/user/login
The module checks if the response body contains the words "Live Helper Chat" and "Please login", and if the response status code is 200.