1. Executive Summary Vulnerability: Information Disclosure (Exposed API Documentation). Description: The application exposes its full API schema (Swagger/OpenAPI interface) at a predictable path ...

1. Executive Summary Vulnerability: Flawed Brute-force protection in password change functionality Description: The “Change Password” functionality behaves inconsistently based on whether the two...

1. Executive Summary Vulnerability: Broken Password Reset (Token Validation Bypass). Description: The application implements a password reset flow that includes a token in the URL and form body. ...

1. Executive Summary Vulnerability: Weak Cryptography (Hash Exposure) & Stored XSS. Description: The application’s “Stay Logged In” cookie contains the user’s password hashed with MD5 (a weak...

1. Executive Summary Vulnerability: Predictable Session Token (Insecure Cookie Construction). Description: The application implements a “Stay Logged In” feature by creating a persistent cookie. H...

1. Executive Summary Vulnerability: Broken 2FA Logic (Insecure Verification Cookie). Description: The application uses a client-side cookie (verify) to determine which user is currently performin...

1. Executive Summary Vulnerability: Broken Two-Factor Authentication (2FA) via Forced Browsing. Description: The application creates a valid, fully authenticated session cookie immediately after ...

1. Executive Summary Vulnerability: Broken Brute-Force Protection (JSON Array Injection). Description: The application accepts authentication credentials via JSON. While it likely implements rate...

1. Executive Summary Vulnerability: Information Disclosure via Account Lock Logic. Description: The application implements account locking to prevent brute-forcing. However, the system verifies t...

1. Executive Summary Vulnerability: Broken Brute-Force Protection (Counter Reset Logic Flaw). Description: The application implements a “strike system” where too many failed login attempts result...