Tag: session-security | RubberDucky.codes

CATEGORY: RESEARCH DATE: 2026-03-09

Research by badjuju - Red Orca

Analysis of a password change flow that accepts a valid session token without requiring current-password reauthentication.