Check for duplicate registration/Overwrite existing user
Check for weak password policy
Check for reuse of existing usernames
Multiple registrations using same details - Race Condition
Check for insufficient email verification process
Weak registration implementation of disposable email addresses
Weak registration implementation-Over HTTP
Overwrite default web application pages by specially crafted username registrations. => After registration, does your profile link appear something like www.test.com/arrow-up-righttest?
a. If so, enumerate default folders of web applications such as /images, /contact, /portfolio
b. Do a registration using the username such as images, contact, portfolio
c. Check if those default folders have been overwritten by your profile link or not."
Last updated 1 month ago
