Session Fixation
github.com/rancher/rancher is vulnerable to Session Fixation. The vulnerability exists because the library does not properly revoke the generated token after modification is made to the authentication provider, allowing an attacker to retain access to Rancher and the kubectl cluster...