| Title | SourceCodester Online Boat Reservation System 1.0 Improper Session Invalidation |
|---|
| Description | Online Boat Reservation System 1.0 contains an Improper Session Invalidation vulnerability. After user logout, the session token remains valid and can still be used to access authenticated resources. An attacker with access to a previously issued session identifier may continue to interact with the application, leading to unauthorized access to user accounts. |
|---|
| Source | ⚠️ https://medium.com/@hemantrajbhati5555/improper-session-invalidation-in-online-boat-reservation-system-using-php-acebd53a8ae7 |
|---|
| User | Hemant Raj Bhati (UID 95613) |
|---|
| Submission | 06/04/2026 13:54 (30 days ago) |
|---|
| Moderation | 07/04/2026 10:06 (30 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 376311 [SourceCodester Online Boat Reservation System 1.0 session expiration] |
|---|
| Points | 18 |
|---|