Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V2 - Authentication

Weak Login Function

POC

Observe that one of these is possible for login functionality - Not Operational or Intended Public Access - Other Plaintext Protocol with no Secure Alternative - LAN Only - HTTP and HTTPS Available - HTTPS not Available or HTTP by Default

Impact

Low

Likelihood

Low