Testfire (IBM Demo Bank)

-

 TestFire (IBM Demo Bank) Testing


1. SQL Injection (' OR '1'='1)Vulnerability

The login page is vulnerable to SQL Injection. I entered a basic SQL Injection(' OR '1'='1) payload in the login field, and the application accepted it. A banking application should always validate user input and prevent SQL Injection attacks.


2. Search Function Does Not Work Properly


The search feature does not return any results


3. Input Validation Can Be Improved


Some input fields do not properly validate the entered data. Invalid characters and unexpected values should be rejected with proper error messages.


4. Error Messages Can Be More User-Friendly


Some error messages are not clear enough for normal users. Simple and meaningful messages would improve the user experience.


Comments

Post a Comment

Popular posts from this blog

Buggy Cars Rating Testing

-
  Buggy Cars Rating Website 1. Name Field Validation Issue The First Name and Last Name fields accept numbers and special characters during registration. A name should contain only alphabetic characters, but the application allows values like Shravan123 or @@@### . 2. No Maximum Length Validation (No Boundary in input) The registration form allows users to enter very long names without any limit. A maximum character limit should be applied to avoid unnecessary data and UI issues. 3. Password Validation is Not User-Friendly While creating an account, the password validation is shown one error at a time. For example, after fixing one error, another error appears only after clicking the Register button again. It would be better to display all password requirements together as a checklist while typing. 4. Technical Error Messages are Displayed The application shows technical messages like InvalidPasswordException and InvalidParameter to the user. Instead of showing backend exceptio...
Read more

OrangeHRM Website Testing

-
OrangeHRM Website Testing  1. Name Field Validation Issue In the My Info page, the First Name field accepts numbers along with alphabets. For example, I entered Shravankumar12 , and it was accepted. A name field should allow only alphabetic characters. 2. Better Error Message for Leave Module In the Apply Leave page, the system displays the message "No Leave Types with Leave Balance." The message is correct, but it does not clearly guide the user. A more helpful message should explain why leave cannot be applied and what the user should do next. 3. Mobile Responsive UI Issue The website is not fully optimized for mobile devices. Some pages require horizontal scrolling, and a few sections do not fit properly on smaller screens. The layout should adjust automatically for a better mobile experience. 4. Dashboard UI Can Be Improved The dashboard contains many widgets on a single page, making it look slightly crowded. Better spacing and a cleaner layout would improve readabilit...
Read more

Test cases on Youtube ( View and uplaod video)

-
  Video Viewing Test Cases What if the internet connection becomes slow during video playback? What if the user refreshes the page while watching the video? What if the selected video quality is not available anymore? What if the user skips to a timestamp that has not been buffered yet? What if the video is made private while the user is viewing it? What if the user watches the video on multiple devices simultaneously? What if the video playback reaches the end and autoplay is enabled? What if the video is age-restricted and the viewer is not signed in? What if the browser crashes and the user reopens the same video? Video Uploading Test Cases What if the internet connection is lost during video upload? What if the video upload remains stuck at a certain percentage for a long time? What if the user uploads a video in an unsupported format? What if the user closes the browser before the upload is completed? What if the user uploads a video larger than the allowed size limit? What if...
Read more