Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

M-Files Web Login Panel - Detect

By kannthu

Vidoc logoVidoc Module

What is the "M-Files Web Login Panel - Detect?"

The "M-Files Web Login Panel - Detect" module is designed to detect the presence of the M-Files Web login panel. M-Files is a software that provides document management solutions. This module focuses on identifying potential misconfigurations or vulnerabilities in the M-Files Web login panel.

This module has an informative severity level, meaning it provides valuable information but does not pose an immediate threat.

Author: Nodauf


The impact of detecting the M-Files Web login panel is primarily related to potential security risks. By identifying the login panel, security professionals can assess the configuration and vulnerability status of the M-Files Web application. This information can help prevent unauthorized access or potential data breaches.

How does the module work?

The module works by sending HTTP requests to the target application and applying specific matching conditions to identify the M-Files Web login panel. One example of a matching condition is checking the HTML body for a specific title tag containing the phrase "M-Files Web". Additionally, the module looks for specific words related to M-Files user authentication in the HTML body.

Here is an example of an HTTP request sent by the module:

GET /Login.aspx

The module then evaluates the response based on the defined matching conditions. If any of the conditions are met, the module reports the detection of the M-Files Web login panel.

It's important to note that this module is part of a larger scanning process performed by the Vidoc platform. Each module represents a specific test case that contributes to the overall assessment of the target application's security.

For more information, you can refer to the M-Files Trust Center Security Advisories.


- max-request: 2 - verified: true - shodan-query: http

Module preview

Concurrent Requests (1)
1. HTTP Request template
Matching conditions
regex: <title>(.*)M-Files Web(.*)</title>or
word: M-Files user, M-Files authentication
Passive global matcher
No matching conditions.
On match action
Report vulnerability