Python Django Admin Login Panel - Detect

What is the "Python Django Admin Login Panel - Detect?"

The "Python Django Admin Login Panel - Detect" module is designed to detect the presence of the Django admin login panel. It targets websites built using the Python Django framework and specifically checks for the presence of the Django administration login page.

This module is classified as informative, meaning it provides information about the presence of the login panel but does not indicate any specific vulnerability or misconfiguration.

This module was authored by pdteam.

Impact

The detection of the Python Django admin login panel does not directly imply any impact or vulnerability. It simply indicates that the Django administration login page is accessible on the website.

How does the module work?

The module works by sending a GET request to the "/admin/login/?next=/admin/" path of the target website. It then checks the response body for the presence of the following HTML code:

<a href="/admin/">Django administration</a>

If this HTML code is found in the response body, the module considers the Django admin login panel to be present.

The module uses a single matching condition, which checks for the presence of the HTML code using a word matcher. The condition is set to "and", meaning all matchers must be satisfied for the module to detect the login panel.

It's important to note that this module only performs detection and does not perform any further actions or exploit any vulnerabilities.