dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fixing wording a smidge.

Browse Source 
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@372 4033779f-a91e-0410-96ef-6bf7bf53c507
This commit is contained in:
soylentmean 2009-01-06 20:19:22 +00:00
parent 01b845beb9
commit 8a372baa01
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
main/project/JavaSource/org/owasp/webgoat/lessons/RoleBasedAccessControl/RoleBasedAccessControl.java
View File

@ -141,9 +141,9 @@ public class RoleBasedAccessControl extends GoatHillsFinancial
if (STAGE1.equals(stage)) if (STAGE1.equals(stage))
{ {
instructions = "Stage 1: Bypass Presentational Layer Access Control.<br>" instructions = "Stage 1: Bypass Presentational Layer Access Control.<br>"
+ "As regular employee 'Tom', exploit weak access control to use the Delete function from the Staff List page. " + "As regular employee 'Tom', exploit weak access control to use the Delete function from the Staff List page. "
+ "Verify that Tom's profile can be deleted." + "Verify that Tom's profile can be deleted. "
+ "The password for a user is always their first name."; + "The passwords for users are their given names in lowercase (e.g. the password for Tom Cat is \"tom\").";
} }
else if (STAGE2.equals(stage)) else if (STAGE2.equals(stage))
{ {