Lack of Throttling on Form Submissions

Severity:

Low

How to test:

  1. Send a form and intercept the request with Burp and send to intruder.

  2. Repeat sending the same request a few times; 30-40 times with atleast 5 con-current requests per 1000 milliseconds.

  3. Check if the submissions are succesful in the mailbox.

PreviousLack of VerificationNextLack of Rate Limiting on Login

Last updated