Session cookies are not used for maintaining valid sessions in iTrack Easy. The user's password is passed as a POST parameter over HTTPS using a base64 encoded passwd field on every request. In this implementation, sessions can only be terminated when the user changes the associated password.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2018-07-13T20:00:00

Updated: 2024-08-06T01:36:27.393Z

Reserved: 2016-08-03T00:00:00

Link: CVE-2016-6545

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-07-13T20:29:00.377

Modified: 2024-11-21T02:56:19.670

Link: CVE-2016-6545

cve-icon Redhat

No data.