Business logic Failure - Browser cache management and logout vulnerability in Certly

Disclosed: 2016-08-29 12:27:01 By cjlegacion To certly

Unknown

Vulnerability Details

1.login the account. 2. browse any tabs or anything in the site 3. logout the account 4.click the back browser button and you are able to see the all previous page Related Topic: https://hackerone.com/reports/7909

Actions

View on HackerOne

Report Stats

Report ID: 158270
State: Closed
Substate: resolved
Upvotes: 7

Business logic Failure - Browser cache management and logout vulnerability in Certly

Vulnerability Details

Actions

Report Stats

Share this report