Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

TYPO3 Login Panel - Detect

By kannthu

informative
Vidoc logoVidoc Module
#panel#typo3
Description

What is the "TYPO3 Login Panel - Detect?"

The "TYPO3 Login Panel - Detect" module is designed to detect the presence of the TYPO3 login panel. TYPO3 is a popular content management system (CMS) used for building websites and web applications. This module focuses on identifying the login panel and provides information about its presence.

This module is categorized as informative, meaning it provides information about the presence of the login panel but does not indicate any vulnerabilities or misconfigurations.

Impact

The impact of this module is purely informative. It helps users determine whether the TYPO3 login panel is present on a website or web application. The presence of the login panel can indicate the use of TYPO3 as the CMS for the site.

How the module works?

The "TYPO3 Login Panel - Detect" module works by sending an HTTP GET request to the "/typo3/" path of the target website or web application. It then applies matching conditions to determine the presence of the TYPO3 login panel.

The matching conditions used by this module are:

- The response body must contain one or more of the following keywords: "TYPO3 CMS", "typo3-login-form", "TYPO3 SVN ID:" - The HTTP response status code must be 200 (OK)

If both matching conditions are met, the module considers the TYPO3 login panel to be present.

Here is an example of the HTTP request sent by the module:

GET /typo3/ HTTP/1.1
Host: [target website]

Please note that this module does not perform any actions beyond detecting the presence of the TYPO3 login panel. It does not report any vulnerabilities or perform any further scanning.

Concurrent Requests (1)
1. HTTP Request template
GET/typo3/
Matching conditions
word: TYPO3 CMS, typo3-login-form, TYPO3 SVN I...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability