Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V2 - Authentication

Weak Registration Implementation over HTTP

POC

  1. Intercept the request during the registration to the application via Burp
  2. Observe that registration request is sent over HTTP

Impact

Low

Likelihood

Low