Sample Answer - CODE Hack

The document outlines a vulnerability report template focusing on the lack of HTTPS, which exposes user data to potential attacks. It provides an example of how the vulnerability can be exploited and details the implications of using insecure HTTP connections. Additionally, it includes a marking scheme for assessing errors based on their severity.

Uploaded by

dhruvstarjain7

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

6 views1 page

Sample Answer - CODE Hack

Uploaded by

dhruvstarjain7

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 1

Vulnerability Report Submission Template

Vulnerability 1 Name: No HTTPS / Insecure HTTP Connection

Explanation:
The website is accessible over plain http:// instead of enforcing secure
https://. This exposes user data to man-in-the-middle (MITM) attacks and
eavesdropping.

Location / Page Reference:

Entire site — Accessible via http://example.com

Working Payload / Proof of Concept:

Open the site in the browser using:
http://securebank.com → It loads without redirecting to https://.

Explanation of Exploitation Method:

If users log in or enter any sensitive data over HTTP, attackers on the same
network can intercept the traffic. This makes it easy to steal login credentials or
session cookies.

(The website does not have this vulnerability. This is just an example)

Marking Scheme

● Easy Errors: 50 points each

● Medium Errors: 100 points each

● Hard Errors: 200 points each

Points are awarded at the discretion of the organising committee.

HTTP by Default
No ratings yet
HTTP by Default
1 page
Vulnerabilities Notes
No ratings yet
Vulnerabilities Notes
68 pages
HTTP & Https Both Available
No ratings yet
HTTP & Https Both Available
1 page
Web Vulnerability Scanner Identifying and Reporting Website Security Flaws
No ratings yet
Web Vulnerability Scanner Identifying and Reporting Website Security Flaws
10 pages
Open Redirect Bounties
No ratings yet
Open Redirect Bounties
5 pages
Vapt 1
No ratings yet
Vapt 1
18 pages
gKccGnAzQBiqnsjs0WZE - Week 1 Report Template
No ratings yet
gKccGnAzQBiqnsjs0WZE - Week 1 Report Template
6 pages
Fcs Bug Submissions-2022130
No ratings yet
Fcs Bug Submissions-2022130
18 pages
Vulnerability Scan of 55 Web Site
No ratings yet
Vulnerability Scan of 55 Web Site
12 pages
TASK1
No ratings yet
TASK1
12 pages
VAPT Project Report
100% (1)
VAPT Project Report
46 pages
Web Spoofing 2001: Yougu Yuan Eileen Zishuang Ye Sean Smith
No ratings yet
Web Spoofing 2001: Yougu Yuan Eileen Zishuang Ye Sean Smith
17 pages
Cyber Security and Ethical Hacking - Powered by StackNexus
No ratings yet
Cyber Security and Ethical Hacking - Powered by StackNexus
37 pages
Cybersecurity Assignment
No ratings yet
Cybersecurity Assignment
2 pages
Cross Site Scripting
No ratings yet
Cross Site Scripting
3 pages
Web Security Testing
No ratings yet
Web Security Testing
11 pages
WebApp Report
No ratings yet
WebApp Report
9 pages
Bug Hunting
No ratings yet
Bug Hunting
119 pages
01 - Roadmap To Bugbounty - Reconnaisance
No ratings yet
01 - Roadmap To Bugbounty - Reconnaisance
38 pages
Lesson 1 ITWS04
No ratings yet
Lesson 1 ITWS04
33 pages
Government Site Security Flaws
No ratings yet
Government Site Security Flaws
12 pages
WAPT Report
No ratings yet
WAPT Report
28 pages
Vulnerability Assessment
No ratings yet
Vulnerability Assessment
12 pages
Snapshot of Open Redirect
No ratings yet
Snapshot of Open Redirect
6 pages
Day 4 Report
No ratings yet
Day 4 Report
2 pages
Bug Bounty Report Template Detailed
No ratings yet
Bug Bounty Report Template Detailed
2 pages
Report SAR
No ratings yet
Report SAR
9 pages
Open Redirect
No ratings yet
Open Redirect
20 pages
Hacktify Weak 1
No ratings yet
Hacktify Weak 1
18 pages
Website Vulnerability Scanner Report (Light)
No ratings yet
Website Vulnerability Scanner Report (Light)
6 pages
Document2 1
No ratings yet
Document2 1
27 pages
Broken Link Hijacking
No ratings yet
Broken Link Hijacking
7 pages
CS Unit 3
No ratings yet
CS Unit 3
35 pages
Vulnerability Report
No ratings yet
Vulnerability Report
6 pages
Bug Hunting
No ratings yet
Bug Hunting
27 pages
Task1 0
No ratings yet
Task1 0
12 pages
PROJECT Yhills
No ratings yet
PROJECT Yhills
27 pages
Vulnerability Scanner For Websites.: Click To Edit Master Title Style
No ratings yet
Vulnerability Scanner For Websites.: Click To Edit Master Title Style
14 pages
Web Application (Muthoot - Com) - Pentesting - Revalidation - Report - 26-4-2023
No ratings yet
Web Application (Muthoot - Com) - Pentesting - Revalidation - Report - 26-4-2023
148 pages
ShadowFox Tasks (HARD)
No ratings yet
ShadowFox Tasks (HARD)
16 pages
Vulnerability Scan: Prepared by
No ratings yet
Vulnerability Scan: Prepared by
9 pages
Vulnerability Assessmentof Web Applicationsand Recommendationsfor Actions Penetration Testing Report
No ratings yet
Vulnerability Assessmentof Web Applicationsand Recommendationsfor Actions Penetration Testing Report
26 pages
Report
No ratings yet
Report
12 pages
Google VRP Bug Hunting Guide
No ratings yet
Google VRP Bug Hunting Guide
54 pages
23eo11 St#is#8195 Task 7
No ratings yet
23eo11 St#is#8195 Task 7
7 pages
KunalKhandelwal - Cyber Security Full Day Practicals Assignment Ver-2
No ratings yet
KunalKhandelwal - Cyber Security Full Day Practicals Assignment Ver-2
40 pages
Handout 2.1 Ethical Hacking Pentesting and Anonymity
No ratings yet
Handout 2.1 Ethical Hacking Pentesting and Anonymity
23 pages
0 - Triage Writing Assessment
No ratings yet
0 - Triage Writing Assessment
8 pages
Must Know Hacking!3
No ratings yet
Must Know Hacking!3
60 pages
Website Scanner-Https Dnet - Demo.id-20240226-0745
No ratings yet
Website Scanner-Https Dnet - Demo.id-20240226-0745
5 pages
Web App Vulnerability Insights
No ratings yet
Web App Vulnerability Insights
30 pages
Web Security for Developers
No ratings yet
Web Security for Developers
38 pages
Project Problem Statement
No ratings yet
Project Problem Statement
4 pages
Sit 8.1P
No ratings yet
Sit 8.1P
11 pages
Top 44 Web Vulnerabilities List
No ratings yet
Top 44 Web Vulnerabilities List
2 pages
PentestTools WebsiteScanner Report
No ratings yet
PentestTools WebsiteScanner Report
6 pages
Final Collective QCM
No ratings yet
Final Collective QCM
17 pages
Security Audit & OWASP Analysis
No ratings yet
Security Audit & OWASP Analysis
17 pages
Server Side Web Application Attacks Cont...
No ratings yet
Server Side Web Application Attacks Cont...
24 pages
IAAC Submission Dhruv Jain
No ratings yet
IAAC Submission Dhruv Jain
3 pages
CMC 2025 Winners
No ratings yet
CMC 2025 Winners
14 pages
SARTHAK Receipt
No ratings yet
SARTHAK Receipt
2 pages
Learner Portfolio IB English SL Placeholders
No ratings yet
Learner Portfolio IB English SL Placeholders
30 pages
Dec 2024
No ratings yet
Dec 2024
146 pages
ICSC
No ratings yet
ICSC
4 pages
Abad7557 9408
No ratings yet
Abad7557 9408
5 pages
Sample IO Script
No ratings yet
Sample IO Script
3 pages
Io Template 2025
No ratings yet
Io Template 2025
6 pages
Abad7557 9405
No ratings yet
Abad7557 9405
5 pages
Physics Paper 6 FAQs
No ratings yet
Physics Paper 6 FAQs
6 pages
Abad7557 9404
No ratings yet
Abad7557 9404
5 pages
Abad7557 9406
No ratings yet
Abad7557 9406
5 pages
Abad7557 9407
No ratings yet
Abad7557 9407
5 pages
Jbad5092 8392
No ratings yet
Jbad5092 8392
5 pages
1211 Dsa
No ratings yet
1211 Dsa
3 pages
Ena1kasc3058 9499
No ratings yet
Ena1kasc3058 9499
5 pages
Jbad5092 8389
No ratings yet
Jbad5092 8389
5 pages
QUESS Operations at Chinese Space Science Mission Center
No ratings yet
QUESS Operations at Chinese Space Science Mission Center
9 pages
2018 Galois Contest
No ratings yet
2018 Galois Contest
4 pages

Sample Answer - CODE Hack

Uploaded by

Sample Answer - CODE Hack

Uploaded by

Vulnerability Report Submission Template

Vulnerability 1 Name: No HTTPS / Insecure HTTP Connection

Location / Page Reference:​

Working Payload / Proof of Concept:​

Explanation of Exploitation Method:​

●​ Easy Errors: 50 points each​

●​ Medium Errors: 100 points each​

●​ Hard Errors: 200 points each

Points are awarded at the discretion of the organising committee.

You might also like

Location / Page Reference:

Working Payload / Proof of Concept:

Explanation of Exploitation Method:

● Easy Errors: 50 points each

● Medium Errors: 100 points each

● Hard Errors: 200 points each