Admin panel exposed

Home » Blog » Admin panel exposed

Description

During the scan, Kayran managed to find that the administrator’s login page is viewable and accessible through any IP address.

An attacker could exploit this finding to perform BruteForce attacks against users, or, to create a similar phishing page scamming users and more.

Recommendation

Define and restrict access which IP addresses are allowed to access the administrator’s login page.
Remember, only authorized personal should have access to this page, block access to anyone other than them.

References

https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/02-Configuration_and_Deployment_Management_Testing/05-Enumerate_Infrastructure_and_Application_Admin_Interfaces

< Return to all Vulnerabilities

Understanding Attackers

Looking in the Attacker’s eyes – There are many ways we can do it. So when we want to achieve the goal of Understanding Attackers,

PT- Pentest – Penetration Testing

There’s no way you’ve had a working internet connection in the last year and you haven’t seen or heard the terms PT, Pentest or Penetration

The average hacker shopping list – the CVE

When i take an X-Rey my doctor sits me down and simply “roast” me with stuff like how un-healthy i am, how i should stop

The Cloud

I’m pretty sure there isn’t a single adult in the world who hasn’t at least heard of The Cloud. Explaining “The Cloud” in 2022 may

Using your Work Against you – Reverse Engineering

There are many types of cyber attacks in our world, but what makes Reverse Engineering unique? Why is it considered to “Using your Work Against

Everything Ransomware

If you wish to know Everything Ransomware related, you’ve come to the right place! What is Ransomware? What can we do with it? Why it’s

WEB APPLICATION VULNERABILITY SCANNER