-
Bug
-
Resolution: Duplicate
-
Critical
-
None
-
None
-
None
This bug was discovered by an automated penetration test executed by IBM Rational AppScan.
Details (copied from Security Report):
Severity: High
Test Type: Application
Vulnerable URL: http://ccd02-01:8080/magnoliaPublic/.magnolia/pages/adminCentral.html
Remediation Tasks: Do not accept externally created session identifiers
Acceptance criteria
- duplicates
-
MAGNOLIA-3248 Magnolia should invalidate any existing session when a user is logging in
- Closed