3 matches found
CVE-2025-43819
CVE-2025-43819 affects Liferay Portal (7.3.3.131–7.4.3.121) and Liferay DXP (2024.Q1.1–Q4.3 across 2024.Q1–Q4). Root cause is Insufficient Session Expiration via the SLO API, allowing remote, unauthenticated attackers to reuse a stale session and gain an authenticated context. Impact is potential...
CVE-2024-29402
cskefu v7 suffers from Insufficient Session Expiration, which allows attackers to exploit the old session for malicious activity...
phpMyFAQ 代码问题漏洞
phpMyFAQ is a multi-language, fully database-driven FAQ system. An access control error vulnerability exists in versions prior to phpMyFAQ 3.2.2, which stems from the presence of insufficient session expiration. An attacker can exploit this vulnerability to still use old sessions...