The broken authentication login vulnerability has not been fixed.
Test 1: Broken Authentication Login Vulnerability Not Fixed
If you login in with username=alice and password=monkey1 and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again.
Test 2: Broken Authentication Login Vulnerability Not Fixed
If you login in with username=bob and password=password and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again.
Test 3: Broken Authentication Login Vulnerability Not Fixed
If you login in with username=alice and password=monkey1 and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again. Did you just solve for specific cases or the general case?