Skip to content

Commit

Permalink
Merge pull request #421 from bugcrowd/Ryan-update-1
Browse files Browse the repository at this point in the history
Updated Steps to Reproduce
  • Loading branch information
evildaemond authored Mar 27, 2023
2 parents a2ceacc + 93783a5 commit e6286ff
Showing 1 changed file with 12 additions and 4 deletions.
Original file line number Diff line number Diff line change
Expand Up @@ -14,10 +14,18 @@ Failure to invalidate a session on logout may also lead to data theft through th

## Steps to Reproduce

1. Sign into a user’s account (Browser A)
1. Sign into the same user’s account, using a different browser (Browser B)
1. Using Browser A, logout of the account
1. Using Browser B, observe that the user session is still valid
1. Enable a HTTP interception proxy, such as Burp Suite or OWASP ZAP
1. Use a browser to navigate to: {{URL}}
1. Sign into a user account
1. In the HTTP interception proxy, capture any authenticated GET or POST request
1. Log out of the user account in the browser
1. In the HTTP interception proxy, resend the following request to the endpoint {{URL}}:

```HTTP
{{request}}
```

1. Observe that the session token was not invalidated on logout

## Proof of Concept (PoC)

Expand Down

0 comments on commit e6286ff

Please sign in to comment.