Is it possible to see the address, url, script where a password is being verified against its hash?

I am testing my own website and was wondering if it was possible for when the attacker sends a request to verify if his input matches the password, that you can see either the script being used to verify it or the address of the database with the passwords?