Falhas do tipo CWE-613
394 resultadosCVE-2026-53776CRITICALPerry < 0.5.1166 JWT Expiration Bypass via verify_decodeEPSS 0.4%CVE-2026-20895MEDIUMEV2GO ev2go.io Insufficient Session ExpirationEPSS 0.4%CVE-2026-24894HIGHFrankenPHP leaks session data between requests in worker modeEPSS 0.4%CVE-2025-42602HIGHImproper Authentication Vulnerability in Meon KYC solutionsEPSS 0.4%CVE-2023-45718LOWHCL Sametime is impacted by a failure to invalidate sessionsEPSS 0.4%CVE-2024-35160MEDIUMIBM Watson Query on Cloud Pak for Data and IBM Db2 Big SQL on Cloud Pak for Data information disclosureEPSS 0.4%CVE-2023-40695MEDIUMIBM Cognos Controller session fixationEPSS 0.4%CVE-2025-58437HIGHCoder's privilege escalation vulnerability could lead to a cross workspace compromiseEPSS 0.3%CVE-2025-28132MEDIUMA session management flaw in Nagios Network Analyzer 2024R1.0.3 allows an attacker to reuse session tokens even after a user logs out, leadiEPSS 0.3%CVE-2024-36523MEDIUMAn access control issue in Wvp GB28181 Pro 2.0 allows users to continue to access information in the application after deleting their own orEPSS 0.3%CVE-2026-26290MEDIUMEV Energy ev.energy Insufficient Session ExpirationEPSS 0.3%CVE-2019-5647MEDIUMRapid7 AppSpider Chrome Plugin Insufficient Session ExpirationEPSS 0.3%CVE-2019-14826MEDIUMA flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this EPSS 0.3%CVE-2025-65883HIGHA vulnerability has been identified in Genexis Platinum P4410 router (Firmware P4410-V2–1.41) that allows a local network attacker to achievEPSS 0.3%CVE-2026-26060MEDIUMFleet: Password reset tokens remain valid after password change for 24 hoursEPSS 0.3%CVE-2026-34503HIGHOpenClaw < 2026.3.28 - Incomplete WebSocket Session Termination on Device Removal and Token RevocationEPSS 0.3%CVE-2025-50491HIGHImproper session invalidation in the component /banker/change-password.php of PHPGurukul Bank Locker Management System v1 allows attackers tEPSS 0.3%CVE-2024-25051MEDIUMIBM Jazz Reporting Service insufficient session expirationEPSS 0.3%CVE-2024-35206HIGHA vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V1.2). The affected application does not EPSS 0.3%CVE-2022-22371MEDIUMIBM Sterling B2B Integrator Standard Edition session fixationEPSS 0.3%