Weak/Auto Fill Password
Critical
Vulnerability Details
## Summary:
https://mtnc-selfservice.mtncameroon.net
The following url has admin/admin as user name and password
## Steps To Reproduce:
1. open the url in any browser of your choice
1. enter admin as user name and password
1. booom .... full asset to super admin full panel
## Supporting Material/References:
See attached screenshots
## Impact
Attacker can make major configuration changes to the services.
Actions
View on HackerOneReport Stats
- Report ID: 817331
- State: Closed
- Substate: resolved
- Upvotes: 50