← Back
⚠️ You are not logged in as admin, but you can still access this page! (Authentication bypass vulnerability)
User Management
| ID |
Username |
Password |
Email |
Role |
Actions |
| 9601 |
admin |
admin123 |
admin@boand.test |
admin |
Delete
|
| 9602 |
user |
user123 |
user@boand.test |
user |
Delete
|
| 9603 |
test |
test123 |
test@boand.test |
user |
Delete
|
Vulnerabilities in this page:
- No authentication required to access admin panel
- Passwords displayed in plain text
- User deletion via GET request (CSRF vulnerable)
- No authorization checks
- SQL injection in delete operation