LunarTides/Login-Thing
Archived
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions

Session might persist after server-side token deletion #2

New issue
Open
opened 2023-07-05 21:35:48 +00:00 by LunarTides · 0 comments
LunarTides commented 2023-07-05 21:35:48 +00:00 (Migrated from github.com)
Copy link

A session created from a cookie might persist after the token gets deleted. This can be exploited if an attacker grabs the token from another user, and even if the original user logs out (which deletes the token) the attacker remains logged in.

AFAIK, this only happens if the attacker directly injects the token cookie, instead of logging in.

This might have something to do with the fact that 'header.php', which handles this, creates a warning on newer versions of php / xampp / mysql.

A session created from a cookie might persist after the token gets deleted. This can be exploited if an attacker grabs the token from another user, and even if the original user logs out (which deletes the token) the attacker remains logged in. AFAIK, this only happens if the attacker directly injects the token cookie, instead of logging in. This might have something to do with the fact that 'header.php', which handles this, creates a warning on newer versions of php / xampp / mysql.
Commenting is not possible because the repository is archived.
No Branch/Tag specified
Branches Tags
main
No results found.
Labels
Clear labels   
bug
Something isn't working

  
documentation
Improvements or additions to documentation

  
duplicate
This issue or pull request already exists

  
enhancement
New feature or request

  
good first issue
Good for newcomers

  
help wanted
Extra attention is needed

  
invalid
This doesn't seem right

  
question
Further information is requested

  
wontfix
This will not be worked on

No labels
bug
documentation
duplicate
enhancement
good first issue
help wanted
invalid
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
LunarTides/Login-Thing#2
No description provided.