CWE-613
Insufficient Session Expiration
According to WASC, Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization.
Official CWE-613 definition at MITREImpactr finds and proves weaknesses like CWE-613 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist