Group 65Go to HackEDU
All Collections
Lesson Help
Broken Authentication Lesson - Account Access Vulnerability Is Not Fixed

Broken Authentication Lesson - Account Access Vulnerability Is Not Fixed

Support Team avatar
Written by Support Team
Updated over a week ago

The broken authentication login vulnerability has not been fixed.

Test 1: Broken Authentication Login Vulnerability Not Fixed

If you login in with username=alice and password=monkey1 and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again.

Test 2: Broken Authentication Login Vulnerability Not Fixed

If you login in with username=bob and password=password and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again.

Test 3: Broken Authentication Login Vulnerability Not Fixed

If you login in with username=alice and password=monkey1 and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again. Did you just solve for specific cases or the general case?

Did this answer your question?