Qlik Sense Server Panel - Detect

What is the "Qlik Sense Server Panel - Detect" module?

The "Qlik Sense Server Panel - Detect" module is a test case designed to detect the presence of the Qlik Sense Server panel. Qlik Sense Server is a software platform that allows users to create and share interactive data visualizations and reports. This module focuses on identifying the Qlik Sense Server panel and provides information about its configuration.

This module has an informative severity level, which means it provides valuable insights and information but does not indicate a critical vulnerability or misconfiguration.

This module was authored by ricardomaia.

Impact

The impact of detecting the Qlik Sense Server panel is primarily informational. It does not indicate any immediate security risks or vulnerabilities. However, it can provide valuable information about the presence and configuration of the Qlik Sense Server panel, which can be useful for further analysis and assessment.

How does the module work?

The "Qlik Sense Server Panel - Detect" module works by sending HTTP requests to specific paths and analyzing the responses for matching conditions. In this case, the module sends a GET request to the "/hub/resources/autogenerated/product-info.json" path on the target server.

The module uses matching conditions to identify the presence of the Qlik Sense Server panel. It looks for specific words in the response body, such as "alt="Qlik Sense", "class="qlik-logo"", "alt="Qlik.Sense"", and "qliksenseserver". If any of these words are found, the module considers the Qlik Sense Server panel to be detected.

Here is an example of the HTTP request sent by the module:

GET /hub/resources/autogenerated/product-info.json

The module then evaluates the response body for the matching conditions and reports the detection if the conditions are met.

For more information about Qlik Sense Server, you can visit the official Qlik website.

Metadata:

- max-request: 2 - verified: true - shodan-query: http.title:"Qlik-S"