Submit #847674: SourceCodester Online Boat Reservation System 1.0 Improper Session Invalidationinfo

TitleSourceCodester Online Boat Reservation System 1.0 Improper Session Invalidation
DescriptionOnline Boat Reservation System 1.0 contains an Improper Session Invalidation vulnerability. After user logout, the session token remains valid and can still be used to access authenticated resources. An attacker with access to a previously issued session identifier may continue to interact with the application, leading to unauthorized access to user accounts.
Source⚠️ https://medium.com/@hemantrajbhati5555/improper-session-invalidation-in-online-boat-reservation-system-using-php-acebd53a8ae7
User Hemant Raj Bhati (UID 95613)
Submission06/04/2026 13:54 (30 days ago)
Moderation07/04/2026 10:06 (30 days later)
StatusAccepted
VulDB entry376311 [SourceCodester Online Boat Reservation System 1.0 session expiration]
Points18

Interested in the pricing of exploits?

See the underground prices here!