default ████ creds on https://████████
Critical
U
U.S. Dept Of Defense
Submitted None
Actions:
Reported by
pirateducky
Vulnerability Details
Technical details and impact analysis
**Description:**
I can log into `https://███ using` `█████` as credentials
## Impact
Can do anything an ██████████ can do in this application, Server Now
## Step-by-step Reproduction Instructions
1. go to `https://███████`
2. log in using `██████████`
## Suggested Mitigation/Remediation Actions
use proper authentication, this might be a test account but it should still not use `███` as the creds
## Impact
logged in as ████ ██████ as shown in the screenshot
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Information Disclosure