Error:

The broken authentication login vulnerability has not been fixed.

Test 1

If you login in with username=alice and password=monkey1 and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again.

Test 2

If you login in with username=bob and password=password and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again.

Test 3

If you login in with username=alice and password=monkey1 and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again. Did you just solve for specific cases or the general case?

Did this answer your question?