| Titolo | SourceCodester Online Boat Reservation System 1.0 Improper Session Invalidation |
|---|
| Descrizione | Online Boat Reservation System 1.0 contains an Improper Session Invalidation vulnerability. After user logout, the session token remains valid and can still be used to access authenticated resources. An attacker with access to a previously issued session identifier may continue to interact with the application, leading to unauthorized access to user accounts. |
|---|
| Fonte | ⚠️ https://medium.com/@hemantrajbhati5555/improper-session-invalidation-in-online-boat-reservation-system-using-php-acebd53a8ae7 |
|---|
| Utente | Hemant Raj Bhati (UID 95613) |
|---|
| Sottomissione | 04/06/2026 13:54 (1 mese fa) |
|---|
| Moderazione | 04/07/2026 10:06 (30 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 376311 [SourceCodester Online Boat Reservation System 1.0 autenticazione debole] |
|---|
| Punti | 18 |
|---|