Repetitive Registration

Difficulty: 🌟

Description: Follow the DRY principle while registering a user.

Category: Improper Input Validation

Tags:

Solution:

DRY principle mean Dry Repeat Yourself, in the registration process you are usually required to re-enter password for confirmation. So the objective here is to bypass the repeat password checking

1. Go to http://localhost:3000/#/register and input all required information

2. If I change the content in field repeat password, the website does not allow me to register

3. But if I change password field, no checking was performed and the register button is clickable

4. Result: Succeeded, It seems that no checking was done at server