Dashboard

Session Security and Cookies

Severity: Low
Bug ID: 724
Researcher: testingcs
Status: Disclosed
Submitted: 04/24/2016

Description:

SESSION TAKEOVER bug in CROWDSHIELD. In this bug even after changing the password, user's session DOES NOT EXPIRE on other devices.

Affected URL:

https://crowdshield.com

Affected Params:



Bug Evidence:

Steps to Reproduce the BUG:

1) I have logged into two different browser with same password (the password is qwertyuiop2)
2) Now I am changing the password in one of the browser (new password is qwertyuiop3)
3) NOW EVEN AFTER CHANGING THE PASSWORD MY SESSION IN ANOTHER BROWSER IS STILL ALIVE.

DANGER associated with this bug is that an ATTACKER can hijack the session and account of the VICTIM


Bug Recommendation:

MUST EXPIRE THE SESSION AS SOON AS THE USER LOG OUT.

Video:



Direct Chat

5
testingcs 04/24/2016
Message User Image
submitted a Session Security and Cookies bug to CrowdShield
CrowdShield 04/24/2016
Message User Image
Hi, thanks for the info and video.. this appears to be valid so we're looking into a fix now.
CrowdShield 04/24/2016
Message User Image
awarded 5 points to testingcs for a Session Security and Cookies bug
CrowdShield 04/24/2016
Message User Image
closed a Session Security and Cookies bug submitted by testingcs
CrowdShield 04/24/2016
Message User Image
disclosed a Session Security and Cookies bug submitted by testingcs

Pending Bugs

ID Severity Vulnerability User Date Status
692High Authentication Bypass dia2diab 07/01/2015 Disclosed
778High Privilege Escalation poseidon 08/24/2018 Disclosed
641High Privilege Escalation daksh 12/05/2014 Disclosed
744High Privilege Escalation realn0j 09/06/2017 Disclosed
670High Remote Code Execution zoczus 05/06/2015 Disclosed
593Medium Buffer Overflow rockcena 12/01/2014 Disclosed
578Medium Cross Site Request Forgery sandeepv 11/30/2014 Disclosed
580Medium Cross Site Request Forgery sandeepv 11/30/2014 Disclosed
659Medium Reflected Cross Site Scripting pratap 12/16/2014 Disclosed
742Low Application Errors guifre 07/29/2017 Disclosed
724Low Session Security and Cookies testingcs 04/24/2016 Disclosed
706Informational Other zediwon 09/28/2015 Disclosed
707Informational Other behroz 10/06/2015 Disclosed