Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

XOOPS Installation Wizard Panel - Detect

By kannthu

Low
Vidoc logoVidoc Module
#panel#xoops
Description

What is the "XOOPS Installation Wizard Panel - Detect?" module?

The "XOOPS Installation Wizard Panel - Detect" module is designed to detect the presence of the XOOPS Installation Wizard panel. XOOPS is a content management system that allows users to create dynamic websites and applications. This module specifically targets the installation wizard panel and checks for its existence.

This module has a low severity level, indicating that it is not a critical vulnerability but should still be addressed to ensure the security of the XOOPS installation.

Author: princechaddha

Impact

The presence of the XOOPS Installation Wizard panel may indicate a potential security risk. If the installation wizard is accessible, it could allow unauthorized individuals to gain access to sensitive information or exploit vulnerabilities in the system.

How does the module work?

The module works by sending an HTTP request to the "/install/page_start.php" path and then analyzing the response. It uses regular expressions to match the HTML title tag of the response against patterns associated with the XOOPS Installation Wizard panel.

Example HTTP request:

GET /install/page_start.php

The module's matching conditions include the following regular expressions:

- (?i)() - (?i)()

If any of these regular expressions match the HTML title tag, the module will report the detection of the XOOPS Installation Wizard panel.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/install/page_start....
Matching conditions
regex: (?i)(<title>(.*)XOOPS Installation Wizar...
Passive global matcher
No matching conditions.
On match action
Report vulnerability