Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Z-BlogPHP Admin Login Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#zblog#panel
Description

What is the "Z-BlogPHP Admin Login Panel - Detect?"

The "Z-BlogPHP Admin Login Panel - Detect" module is designed to detect the presence of the Z-BlogPHP admin login panel. Z-BlogPHP is a popular blogging platform that allows users to create and manage their own blogs. This module focuses on identifying any misconfigurations or vulnerabilities related to the admin login panel.

This module has an informative severity level, which means it provides valuable information about potential issues but does not pose an immediate threat.

Impact

This module does not directly impact the functionality or security of the Z-BlogPHP platform. Instead, it helps users identify any potential weaknesses in the admin login panel configuration, which could lead to unauthorized access or other security risks if left unaddressed.

How the module works?

The "Z-BlogPHP Admin Login Panel - Detect" module utilizes HTTP request templates and matching conditions to identify the presence of the admin login panel. It sends a GET request to the "/zb_system/login.php" path and checks for specific conditions to determine if the panel is present.

The matching conditions used in this module are:

- Body: The module looks for the presence of the "<title>Z-Blog</title>" tag in the response body, indicating the presence of the Z-BlogPHP admin login panel. - Status: The module checks if the HTTP response status code is 200, indicating a successful request.

If both conditions are met, the module reports the presence of the admin login panel.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/zb_system/login.php
Matching conditions
word: <title>Z-Blog</title>and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability