Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V2 - Authentication

Lack of Password Confirmation

POC

Test if password confirmation is necessary with these actions: - Change Email Address - Change Password - Delete Account - Manage 2FA

Impact

Medium

Likelihood

Low