Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V3 - Session Management

Insecure Storage of JWT Token

POC

  1. Login into the application with any valid user account;
  2. Check a browser's Local Storage
  3. Observe that JWT token is stored in Local Storage
  4. If an attacker can achieve running JavaScript in the Securing single page (SPA) using a cross-site scripting (XSS) attack, they can retrieve the tokens stored in local storage.

Impact

Low

Likelihood

Low