Session Management Issue

Title	Vulnerabilities	Programs	Authors
Securing the Computer Security Course: Discovering a Session Hijacking Vulnerability in EPFL's COM-301 Website	Session Management Issue	EPFL	Thomas Houhou (@Th0h0)
Session Token Enumeration in RWS WorldServer	Session Management Issue Bruteforce	Trados (WorldServer)	RedTeam Pentesting (@RedTeamPT)
[Netflix][Smart TV] — Chaining Self-XSS with Session poisoning.	Self-XSS Cookie Injection Session Management Issue	Netflix	Lyubomir Tsirkov (@Lyubo_tsirkov)
Cengage LTI Session Management Leakage	SSO Session Management Issue	Cengage	Tony Porterfield
Pwning a Cisco RV340 with a 4 bug chain exploit	Local Privilege Escalation OS Command Injection RCE Session Management Issue	Cisco	Liv (@TerminatorLM)
Flask Security	OIDC Session Management Issue	Undisclosed	Zakhar Fedotkin / D4d (@D4d89704243)
Pre-Auth RCE in Moodle Part II - Session Hijack in Moodle's Shibboleth	Session Hijacking Session Management Issue Account Takeover RCE	Moodle	Johannes Moritz Robin Peraglie
Exploiting Redash instances with CVE-2021-41192	Privilege Escalation Session Management Issue SSRF	Undisclosed	Ian Carroll (@Iangcarroll) Tuan Anh Nguyen (@Haxor31337) Gal Nagli (@Naglinagli)
Account Takeovers — Believe the Unbelievable	Account Takeover Session Management Issue Weak Credentials Components With Known Vulnerabilities Password Reset	Undisclosed	Nikhil (Niks) (@Niksthehacker)
Exploiting outdated Apache Airflow instances	Session Management Issue	Undisclosed	Ian Carroll (@Iangcarroll)
[Writeup][Bug Bounty][Instagram] Instagram Still Send New DMs and Video Calls to Device After Logout [ID][EN]	Session Management Issue	Meta / Facebook	Muhammad Thomas Fadhila Yahya (@Fadhilthomas)
Weak session validation bug let you login even after changing the session IDs and logging out from the accounts	Logic Flaw Session Management Issue	Viator.com	Manasjha (@Manas_hunter)
Breaking the Competition (Bug Bounty Write-up)	Race Condition DoS Logic Flaw Session Management Issue	Undisclosed	George O (@Georgeomnet)
A $25 Easy Bug.	Session Management Issue	Undisclosed	Navneet (@Na5n33t)
Reusing Cookies	Session Management Issue	Undisclosed	Ricardo Iramar Dos Santos
CORS Misconfiguration to Account TakeOver [Out of scope to grab items In-Scope]	CORS Misconfiguration Open Redirect Reflected XSS Session Management Issue	Undisclosed	Mashoud1122 (@Mashoud1122)
Baking Flask cookies with your secrets	Session Management Issue	Undisclosed	Luke Paris
Broken Authentication — Bug Bounty	Session Management Issue	Undisclosed	Vulnerables
CVE-2018-13784: PrestaShop 1.6.x Privilege Escalation	Privilege Escalation Session Management Issue	PrestaShop	Charles Fol (@Cfreal_)
Luminate Store Basics defacement and potential takeover	CSRF Session Management Issue	Yahoo! / Verizon Media	Rojan Rijal (@Uraniumhacker)
OpenProject Session Management Security Vulnerability aka CVE-2017-11667	Session Management Issue	OpenProject	Mohamed A. Baset

Page 1 of 1