Concurrent Sessions


Description

The application allows multiple connections simultaneously with the same authenticated user account. If an attacker impersonates the user with the application, the user will be unaware that their account has been compromised. 

Custom Description

Impact

Risk Rating

Remediation

How To Test

Sample Report Screenshots

Time Saving Tips

Testing Gotchas

References

 

Subscribe here in order to gain access to the AppSec Findings Database