The broken authentication login vulnerability has not been fixed.

Test 1: Broken Authentication Login Vulnerability Not Fixed

If you login in with username=alice and password=monkey1 and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again.

Test 2: Broken Authentication Login Vulnerability Not Fixed

If you login in with username=bob and password=password and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again.

Test 3: Broken Authentication Login Vulnerability Not Fixed

If you login in with username=alice and password=monkey1 and then logout are you able to get into a session without logging in? Please review the Defense section of the lesson and try again. Did you just solve for specific cases or the general case?

Did this answer your question?