Critical severity9.8NVD Advisory· Published Mar 15, 2021· Updated Jun 17, 2026
CVE-2020-35358
CVE-2020-35358
Description
DomainMOD domainmod-v4.15.0 is affected by an insufficient session expiration vulnerability. On changing a password, both sessions using the changed password and old sessions in any other browser or device do not expire and remain active. Such flaws frequently give attackers unauthorized access to some system data or functionality.
Affected products
2- DomainMOD/domainmoddescription
Patches
Vulnerability mechanics
References
1- gist.github.com/anku-agar/0fec2ffd98308e550ce9b5d4b395d0d7nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.