mathan_vel

 Profile Answers by mathan_vel Questions by mathan_vel

• Jun 18th, 2008

 

Its very simple to answer. but you should well aware of the Severity Concept


 While executing the Test case, if the application takes u to "Page cannot be found" or "Server Error" and the page freezed not able to navigates to any page means note them as Severity High bugs

srinivasulub1981

 Profile Answers by srinivasulub1981 Questions by srinivasulub1981

• Mar 9th, 2009

 

Hi

I've found so many severe bugs in my career, i cant select from the list , any how i will try to tell one bug here..

Bug: In our project employees can do volunteering in their own and personal time, finally  they can apply grant if they volunteered morethan 15 hours, if company accepted then employee can get the grant.

   Here the issue is employees who are not eligible to apply grant are able to apply the grant by doing some un authorised operations.

For ex:


 user1: : is eligible for grant
 user2: : is not eligible for grant

So 2nd user is able to apply the grant by just changing the app_id from 891 to 890, this will fall under security testing, and from that on words a lot of security testing is introduced to my project.

Srinivas 

kurtz182

 Profile Answers by kurtz182 Questions by kurtz182

• Dec 12th, 2009

 

I discovered a scenario which had been overlooked whereby a user with a content provider role could manipulate the system and access administrative functionalities.  From there, this content provider could change his role to administrator and submit his content to the website without administrator approval.