2 matches found
Session fixation
Insufficient Session Expiration in GitHub repository firefly-iii/firefly-iii prior to 6...
CVE-2023-1788
CVE-2023-1788 affects Firefly III (firefly-iii/firefly-iii) prior to version 6.0.0, where sessions do not expire promptly after inactivity or on close. The issue is described as insufficient session expiration and is reflected in multiple sources (Red Hat advisory, GitHub advisory, GHSA, OSV, NVD...