Course
In this challenge, the issue arises from the way the user is redirected back to the login page. The developer forgot to stop the execution after the redirect, allowing access to unauthorized code by inspecting the server's response.
Skills covered
Authentication
Authorisation
CWE-664
Included with PRO
Full course content
3 videos
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
