Sage X3 Login Panel - Detect

What is the "Sage X3 Login Panel - Detect" module?

The "Sage X3 Login Panel - Detect" module is designed to detect the presence of the Sage X3 login panel. It is a module used in the Vidoc platform for scanning and identifying specific software configurations, vulnerabilities, or misconfigurations. The severity of this module is classified as informative, meaning it provides valuable information but does not pose an immediate threat.

This module was authored by pikpikcu and daffainfo.

Impact

The detection of the Sage X3 login panel does not directly indicate any impact or vulnerability. It simply identifies the presence of the login panel, which can be useful for further analysis and assessment of the system's security posture.

How does the module work?

The "Sage X3 Login Panel - Detect" module works by sending an HTTP request to the "/auth/login/page" path and applying specific matching conditions to determine if the Sage X3 login panel is present.

The matching conditions for this module include:

- Checking the response body for the presence of the "<title>Sage X3</title>" and "'/auth/sage-id/registerStart'" strings. - Verifying that the HTTP response status is 200.

If both matching conditions are met, the module identifies the presence of the Sage X3 login panel.

Example HTTP request:

GET /auth/login/page

Metadata:

- Max-request: 1 - Shodan-query: http.title:"Sage X3"

Please note that this module is designed solely for detection purposes and does not perform any further actions or exploit vulnerabilities.