CVE-2022-22113
CVE-2022-22113 affects DayByDay CRM versions 2.2.0 through 2.2.1 (latest). The root issue is Insufficient Session Expiration: after a user or administrator changes a password, an already-logged-in session can continue to access the application. The impact is high for confidentiality, integrity, a...