WAGO PLC Panel - Detect

What is the "WAGO PLC Panel - Detect" module?

The "WAGO PLC Panel - Detect" module is a test case designed to detect the presence of a WAGO PLC panel. It targets the CoDeSys WebVisualization software and checks for specific indicators in the HTTP response. The severity of this module is classified as informative, meaning it provides valuable information but does not indicate a vulnerability or misconfiguration.

This module was authored by github.com/its0x08.

Impact

This module does not have a direct impact on the system being scanned. It simply detects the presence of a WAGO PLC panel, providing information about its existence.

How does the module work?

The "WAGO PLC Panel - Detect" module works by sending an HTTP GET request to the "/plc/webvisu.htm" path of the target. It then applies two matching conditions to the response:

- The first condition checks if the response body contains the following words: "<TITLE>CoDeSys WebVisualization</TITLE>" and "webvisu.jar,minml.jar". - The second condition checks if the response header contains the word "WAGO_Webs".

If both conditions are met, the module considers the presence of a WAGO PLC panel as detected.

Here is an example of the HTTP request sent by the module:

GET /plc/webvisu.htm

The module does not perform any further actions or exploit any vulnerabilities. It simply reports the detection of the WAGO PLC panel.