Microweber 1.1.18 is affected by insufficient session expiration. When changing passwords, both sessions for when a user changes email and old sessions in any other browser or device, the session does not expire and remains active.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microweber microweber 1.1.18 |