SAP Fiori Login Panel - Detect

What is the "SAP Fiori Login Panel - Detect?"

The "SAP Fiori Login Panel - Detect" module is designed to detect the presence of the SAP Fiori login panel. SAP Fiori is a user interface technology developed by SAP for its business applications. This module focuses on identifying the login panel specifically.

The severity of this module is classified as informative, meaning it provides valuable information but does not indicate a vulnerability or misconfiguration.

This module was authored by righettod.

Impact

This module does not have any direct impact as it is purely for detection purposes. It helps identify the presence of the SAP Fiori login panel, but does not assess any vulnerabilities or misconfigurations.

How does the module work?

The "SAP Fiori Login Panel - Detect" module works by sending HTTP requests to specific paths associated with SAP Fiori. It uses matching conditions to identify the presence of the login panel.

One example of a matching condition is checking the body of the response for the presence of the words "fioriLogin" and "action=\"/fiori\"". Another condition checks for the words "UIPPortalPath" and "/irj/portal/fiori". These conditions are combined using the "and" operator.

If any of the matching conditions are met, the module considers the SAP Fiori login panel to be detected.

It is important to note that this module does not perform any actions beyond detection. It simply provides information about the presence of the login panel.