Insufficient Session Cookie Invalidation in nopCommerce v4.10 and 4.80.3
nopCommerce v4.10和4.80.3版本存在会话cookie无效化不足问题。攻击者可利用有效cookie访问受保护端点,导致会话劫持和权限提升。 2025-8-19 03:0:18 Author: seclists.org(查看原文) 阅读量:14 收藏
nopCommerce v4.10和4.80.3版本存在会话cookie无效化不足问题。攻击者可利用有效cookie访问受保护端点,导致会话劫持和权限提升。 2025-8-19 03:0:18 Author: seclists.org(查看原文) 阅读量:14 收藏
Full Disclosure mailing list archives
From: Ron E <ronaldjedgerson () gmail com>
Date: Sun, 17 Aug 2025 22:48:22 -0400
nopCommerce v4.10 and 4.80.3 is vulnerable to Insufficient Invalidation of Session Cookies. The application does not properly invalidate or expire authentication cookies after logout or session termination. An attacker who obtains a valid session cookie (e.g., via network interception, XSS, or system compromise) can continue to use the cookie to access privileged endpoints (such as /Admin) even after the legitimate user has logged out. This flaw enables session hijacking and privilege escalation, as the cookie remains valid beyond its intended lifecycle. POST /Admin HTTP/2 Host: <host> Cookie: .Nop.Authentication=CfDJ8F*** _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: https://seclists.org/fulldisclosure/
Current thread:
- Insufficient Session Cookie Invalidation in nopCommerce v4.10 and 4.80.3 Ron E (Aug 18)
文章来源: https://seclists.org/fulldisclosure/2025/Aug/14
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh