Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Odoo OpenERP Database Selector Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#openerp#panel
Description

What is the "Odoo OpenERP Database Selector Panel - Detect?"

The "Odoo OpenERP Database Selector Panel - Detect" module is designed to detect the presence of the Odoo OpenERP database selector panel. Odoo OpenERP is a popular open-source business management software that allows users to manage various aspects of their business, such as sales, inventory, and accounting. This module focuses on identifying the database selector panel, which is a component of the Odoo OpenERP system.

This module has an informative severity level, meaning it provides valuable information but does not indicate a vulnerability or misconfiguration.

Author: impramodsargar

Impact

The impact of this module is purely informative. It does not indicate any specific security vulnerabilities or misconfigurations. Instead, it helps users identify the presence of the Odoo OpenERP database selector panel, which can be useful for system administrators and developers.

How does the module work?

The "Odoo OpenERP Database Selector Panel - Detect" module works by sending an HTTP GET request to the "/web/database/selector/" path. It then applies two matching conditions to determine if the Odoo OpenERP database selector panel is present:

    - The module checks if the response body contains the HTML title tag "<title>Odoo</title>". This indicates that the page is related to Odoo OpenERP. - The module verifies that the HTTP response status code is 200, indicating a successful request.

If both conditions are met, the module reports the detection of the Odoo OpenERP database selector panel.

Metadata: max-request: 1

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/web/database/select...
Matching conditions
word: <title>Odoo</title>and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability