Weak Authentication Vulnerability Demo
Weak authentication vulnerabilities occur when applications use insecure methods to verify user identity. This includes hardcoded credentials, weak password policies, or client-side authentication.
Try to find the admin password by examining the source code.
The password is hardcoded in the JavaScript file (script.js):
This demonstrates why authentication should never be performed client-side, as anyone can view the source code and find hardcoded credentials.
To prevent weak authentication vulnerabilities: