| 标题 | SourceCodester Online Boat Reservation System 1.0 Improper Session Invalidation |
|---|
| 描述 | Online Boat Reservation System 1.0 contains an Improper Session Invalidation vulnerability. After user logout, the session token remains valid and can still be used to access authenticated resources. An attacker with access to a previously issued session identifier may continue to interact with the application, leading to unauthorized access to user accounts. |
|---|
| 来源 | ⚠️ https://medium.com/@hemantrajbhati5555/improper-session-invalidation-in-online-boat-reservation-system-using-php-acebd53a8ae7 |
|---|
| 用户 | Hemant Raj Bhati (UID 95613) |
|---|
| 提交 | 2026-06-04 13時54分 (1 月前) |
|---|
| 管理 | 2026-07-04 10時06分 (30 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 376311 [SourceCodester Online Boat Reservation System 1.0 弱身份验证] |
|---|
| 积分 | 18 |
|---|