Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
Oracle WebCenter Sites is a software platform that allows organizations to create and manage their online presence. It provides a comprehensive set of tools for building and managing websites, portals, and other digital experiences. This module focuses on detecting vulnerabilities in Oracle WebCenter Sites installations.
Severity: Informative
Author: leovalcante
The module helps identify potential vulnerabilities in Oracle WebCenter Sites installations. By detecting misconfigurations or vulnerabilities, organizations can take appropriate measures to secure their systems and protect against potential attacks.
The module uses HTTP request templates and matching conditions to scan Oracle WebCenter Sites installations. It sends a GET request to the "/welcome_webcenter.html" path and checks for specific conditions to determine if the installation is vulnerable.
Matching conditions:
- The response must contain the words "FOR ORACLE" and "WebCenter Framework". - The response status code must be 200.If these conditions are met, the module reports a vulnerability in the Oracle WebCenter Sites installation.
Example HTTP request:
GET /welcome_webcenter.html
Note: The actual module definition is not shown here for simplicity.