Please recheck the report number 3632899 and 3632876 for Improper access control. I've added the production steps in the comment box of the report. The vulnerability is easy to reproduce.
Putting below payload in username and password will bypass the authentication for both of the reports.
0' OR '0'='0
Can't reproduce vulnerability
-
- Posts:4
- Joined:Mon Nov 27, 2023 1:22 pm
Re: Can't reproduce vulnerability
haha they reject same, always happening with me too on this.
Re: Can't reproduce vulnerability
we don't accept sql injections, read rules
-
- Posts:1
- Joined:Mon Apr 15, 2024 12:29 am
Re: Can't reproduce vulnerability
This is frustrating and not nice at all! Always happening with me too on this. Drift Boss
Who is online
Users browsing this forum: No registered users and 2 guests