Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huntrLujiefsi4BC61886-3A40-4C89-B20A-226C7982C800
HistoryApr 02, 2023 - 3:24 a.m.

Insufficient Session Expiration

2023-04-0203:24:14
lujiefsi
www.huntr.dev
10
session expiration
user deletion
password change
security vulnerability
bug bounty

EPSS

0.003

Percentile

65.3%

JSON

Description

User session are still vaild when users is deleted or password is changed

Proof of Concept

1 user1 login in browser1

2 admin delete user1 in browser2

3 user1 can still do anyting

Related

osv 2
cve 1
veracode 1
cnvd 1
prion 1
cvelist 1
github 1
nvd 1
osv
osv
Apache InLong Insufficient Session Expiration vulnerability
2023-07-06 21:14:59
CVE-2023-31065
2023-05-22 16:15:10
cve
cve
CVE-2023-31065
2023-05-22 16:15:10
veracode
veracode
Session Fixation
2023-05-26 05:04:11
cnvd
cnvd
Apache InLong Security Bypass Vulnerability
2023-05-28 00:00:00
prion
prion
Session fixation
2023-05-22 16:15:00
cvelist
cvelist
CVE-2023-31065 Apache InLong: Insufficient Session Expiration in InLong
2023-05-22 15:40:56
github
github
Apache InLong Insufficient Session Expiration vulnerability
2023-07-06 21:14:59
nvd
nvd
CVE-2023-31065
2023-05-22 16:15:10

EPSS

0.003

Percentile

65.3%

JSON
Related for 4BC61886-3A40-4C89-B20A-226C7982C800
osv2cve1veracode1cnvd1prion1cvelist1github1nvd1