Easy to check and find 3 different Bug on sign in and sign up.
- No Password Policy
when you try to sign up for new account so check password area and simply put Password=12345678. if you sign up with this simple password means there no Password policy apply.
Step for check No Password Policy
POC and tips- read on Hackerone and bugcrowd
2. Weak Password Policy
when you try to sign up for new account so check password area and simply put Password=12345678. if you see any error like minimum password length 8 digit and use one upper and lower word and symbol. so you simply put there email id on password place. if you sign up with this email id as password means there weak Password policy apply
Step
Note- use inspect for see password in clear text.(right click on web page and click inspect . search password input area and change input type “password” to “text”) and see password area password in clear text.
POC and tips- read on Hackerone and bugcrowd
3. NO rate limiting
A rate limiting algorithm is used to check if the user session (or IP-address) has to be limited based on the information in the session cache. if client made too many requests within a given time frame.
HTTP-Servers can respond with status code 429: Too Many Requests
step
- select login page and there is password forget option.
- put email address and click on enter.
- capture this request on burp and send to intruder .
- go to intruder and Positions selection and click on clear
- select on comment like -Accept-Language: en-US,en;q=0.$5$
- go to payloads selection and payload type “Numbers” and payloads option type “sequential” From=1 and To=200 , Step=1
- Click on start attack
- few time after you check your inbox box receive 200 mail .
- boom
- DONE.
POC and tips - read on Hackerone and bugcrowd
