Drupal – Login Exposed


During the scan, Kayran has detected that the Drupal login page Exposed (hence Drupal – Login Exposed).
The admin’s login page is accessible from any IP address.

An attacker could exploit this finding to perform Brute Force attacks against users, if succeed, could have devastating results.
He can also use it to create a similar phishing page in order to get an admin\user login credentials.


To fix Drupal – Login Exposed, Restrict access to the login page.
Try to restrict this section entirety to any unauthorized IP addresses.



< Return to all Vulnerabilities

Man-In-The-Middle Attacks

Do you know these people who just push themselves into conversations?That’s Man-In-The-Middle Attacks. And from a wider angle, Man-In-The-Middle Attacks, or MITM, are built around

Read More »