Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-613

CWE-613

Insufficient Session Expiration

Parent: CWE-672 - Operation on a Resource after Expiration or Release

According to WASC, "Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization."

509 vulnerabilities with CWE-613

CVE-2026-24667 MEDIUM

Open eClass <4.2 - Info Disclosure

CVE-2026-24472 MEDIUM

Hono <4.11.7 - Info Disclosure

CVE-2025-12624 MEDIUM

Improper Token Invalidation in WSO2 Identity Server Allows Access After Account Lock

CVE-2025-57735 CRITICAL

Apache Airflow: Airflow Logout Not Invalidating JWT

CVE-2025-66483 MEDIUM

Multiple vulnerabilities have been addressed in IBM Aspera Shares

CVE-2025-55264 MEDIUM

HCL Aftermarket DPC is affected by Failure to Invalidate Session on Password Change

CVE-2025-14810 MEDIUM

IBM InfoSphere Information Server is vulnerable due to insufficient session expiration

CVE-2025-15553 HIGH

Insecure Logout Functionality in Truesec LAPSWebUI

CVE-2025-15552 HIGH

Long Session Lifetime in Truesec LAPSWebUI

CVE-2025-59786 CRITICAL

2N Access Commander <3.4.2 - Auth Bypass

CVE-2025-36377 MEDIUM

IBM Security QRadar EDR 3.12-3.12.23 - Auth Bypass

CVE-2025-36376 MEDIUM

IBM Security QRadar EDR 3.12-3.12.23 - Auth Bypass

CVE-2025-27898 MEDIUM

IBM DB2 Recovery Expert 5.5 IF002 - Auth Bypass

CVE-2025-55705 HIGH

Evmapa EV Charging System - Session Management

CVE-2025-36065 MEDIUM

IBM Sterling Connect < 5.2.0.13 - Insufficient Session Expiration

CVE-2025-36063 MEDIUM

IBM Sterling Connect < 5.2.0.13 - Insufficient Session Expiration

CVE-2025-52661 LOW

Hcltech Aion - Insufficient Session Expiration

CVE-2025-4677 MEDIUM

ABB WebPro SNMP Card PowerValue <1.1.8.K - Info Disclosure

CVE-2025-31962 LOW

Hcltech Bigfix Insights For Vulnerabi... - Insufficient Session Expiration

CVE-2025-68954 MEDIUM

Pterodactyl <1.11.11 - Info Disclosure

CVE-2025-55254 LOW

HCL BigFix Remote Control Lite Web Portal <10.1.0.0326 - RCE

CVE-2025-62329 MEDIUM

Hcltechsw Hcl Devops Deploy - Insufficient Session Expiration

CVE-2025-36360 MEDIUM

IBM Devops Deploy < 8.0.1.11 - Insufficient Session Expiration

CVE-2025-65430 MEDIUM

Allauth < 65.13.0 - Insufficient Session Expiration

CVE-2025-62631 MEDIUM

Fortinet Fortios < 7.4.1 - Insufficient Session Expiration

Previous Page 3 of 21 Next

Details

Vulnerabilities 509

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy