Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-613

CWE-613

Insufficient Session Expiration

Parent: CWE-672 - Operation on a Resource after Expiration or Release

According to WASC, "Insufficient Session Expiration is when a web site permits an attacker to reuse old session credentials or session IDs for authorization."

509 vulnerabilities with CWE-613

CVE-2025-4528 MEDIUM

Digitro Ngc Explorer < 3.44.15 - Insufficient Session Expiration

CVE-2025-46336 MEDIUM

Rack::Session <2.1.1 - Privilege Escalation

CVE-2025-32441 MEDIUM

Rack < 2.2.14 - Race Condition

CVE-2025-46815 HIGH

ZITADEL <3.0.0-2.70.10 - DoS

CVE-2025-46344 MEDIUM

Auth0 Next.js SDK <4.5.1 - Info Disclosure

CVE-2025-2185 HIGH

ALBEDO Telecom Net.Time - PTP/NTP clock <1.4.4 - Info Disclosure

CVE-2025-42602 HIGH

Meon KYC - Auth Bypass

CVE-2025-28059 HIGH

Nagios Network Analyzer - Insufficient Session Expiration

CVE-2025-24859 HIGH

Apache Roller <6.1.5 - Info Disclosure

CVE-2025-30516 LOW

Mattermost Mobile Apps <=2.25.0 - Info Disclosure

CVE-2025-1968 HIGH

Progress Software Corporation Sitefinity <15.2 - Info Disclosure

CVE-2025-28132 MEDIUM

Nagios Network Analyzer - Insufficient Session Expiration

CVE-2025-2596 MEDIUM

Checkmk < 2.1.0 - Insufficient Session Expiration

CVE-2025-1198 MEDIUM

Gitlab < 17.6.5 - Insufficient Session Expiration

CVE-2025-24973 CRITICAL

Concorde <12.25Q1.1 - Info Disclosure

CVE-2025-24896 HIGH

Misskey <2025.2.0-alpha.0 - Info Disclosure

CVE-2025-22386 HIGH

Optimizely Configured Commerce - Insufficient Session Expiration

CVE-2024-43181 MEDIUM

IBM Concert <2.1.0 - Privilege Escalation

CVE-2024-13996 CRITICAL

Nagios XI < 2024 - Insufficient Session Expiration

CVE-2024-33507 HIGH

Fortinet Fortiisolator < 2.4.5 - Insufficient Session Expiration

CVE-2024-41985 LOW

Siemens Opcenter Quality - Insufficient Session Expiration

CVE-2024-27779 MEDIUM

FortiSandbox <4.4.4 - Info Disclosure

CVE-2024-50562 MEDIUM

Fortinet Fortisase < 7.2.11 - Insufficient Session Expiration

CVE-2024-22351 MEDIUM

IBM InfoSphere Information 11.7 - Privilege Escalation

CVE-2024-45651 MEDIUM

IBM Sterling Connect Direct Web Services - Insufficient Session Exp...

Previous Page 6 of 21 Next

Details

Vulnerabilities 509

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy