Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V4 - Access Control

POC

Impact

Likelihood

Authorization is the concept of allowing access to resources only to those permitted to use them. Ensure that a verified application satisfies the following high level requirements: • Persons accessing resources hold valid credentials to do so. • Users are associated with a well-defined set of roles and privileges. • Role and permission metadata is protected from replay or tampering.