Description

The application does not properly validate the uniqueness of the data, allowing an attacker to reuse or regenerate information that should be valid for one use only.

Impact

Lead to different vulnerabilities by abusing the misconfigured feature.

Recommendation

Implement validations to ensure that the data cannot be reused nor regenerated if the application requires a unique value.

Threat

Authenticated attacker from the Internet.

Expected Remediation Time

⏱️ 45 minutes.

Requirements

Fixes