Delivered-To: info@designerliving.com Received: by 2002:a0c:e34a:0:b0:4c7:4bb8:64c with SMTP id a10csp404349qvm; Wed, 7 Dec 2022 11:43:50 -0800 (PST) X-Received: by 2002:a4a:b303:0:b0:49f:d49d:aab3 with SMTP id m3-20020a4ab303000000b0049fd49daab3mr30139988ooo.43.1670442230457; Wed, 07 Dec 2022 11:43:50 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1670442230; cv=none; d=google.com; s=arc-20160816; b=f+ehtDA/u/1S41FMA/AYMr6inluCGV+lqi8952XM8d8xWnVYngiMPcR0kx7zQktiDw XAMTnaM9k7k1hQVcW2Nlj+gWaqqg0ZahRZUGCPQ23QZ+5p3Th5TYrlPOWzwPWM+gEbCQ UapV4PblCqvHTGxSUghf4YLJnXB3INCd50gH55y2rWefvGJtPYcPiK4UXlqb/ksAla2A yew7qNYPVyU9Xz5D2aPEy5W87d9kA8HtPDkdRm7hBLVVk9BvCsdj1icZTPuwnCQpdTr/ G4l7quGuvYpQDxQqR8BhsSu3LNrUVh1C1MFFaiJFfh0Rys6MLLYe2+BiSPkbjrcPhDnU S1fw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=juve/IIYEGScWteFZtLPwEdFZasQhU0Ngo3RagXyXF4=; b=v2UqeXIl5ZgQvRAvnREdSomRXT0fqNFAKHNQIOBZ+G3maZM4YuRDNEnJ4G7zbsph60 0omQTtM1kLSUC1AA2uYw2FrwGl28LGVILCPAvKMwyrYQ6pH34UuQ4pM6MGXPZ3s0hR/L iORp5UFh6F5sODEzm2JbudiotdzI/TpZdsF5O3s+NO0qsj2qBuQjdtn3NJGrkmk+BEFy Fzguof5/GWtab0zx/kklMA+2pfChjnnShg3O4788Yyy/L6dRT2fkTBP4nEUAoql5+CMn IA0h4Pmc0dBr46czZudyOYCHMcP8ANHAA6udlPQ5ta/WP2hFHV0ov90zjsAUgZCK6jAq Z7wQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b=dXEh3j9O; spf=pass (google.com: domain of danieljoseph11556@gmail.com designates 209.85.220.41 as permitted sender) smtp.mailfrom=danieljoseph11556@gmail.com; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from mail-sor-f41.google.com (mail-sor-f41.google.com. [209.85.220.41]) by mx.google.com with SMTPS id h4-20020acab704000000b00342a0b22ae0sor6212444oif.130.2022.12.07.11.43.50 for (Google Transport Security); Wed, 07 Dec 2022 11:43:50 -0800 (PST) Received-SPF: pass (google.com: domain of danieljoseph11556@gmail.com designates 209.85.220.41 as permitted sender) client-ip=209.85.220.41; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20210112 header.b=dXEh3j9O; spf=pass (google.com: domain of danieljoseph11556@gmail.com designates 209.85.220.41 as permitted sender) smtp.mailfrom=danieljoseph11556@gmail.com; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=juve/IIYEGScWteFZtLPwEdFZasQhU0Ngo3RagXyXF4=; b=dXEh3j9O+1MMKfygV0/E0Uk/eD6jVvQ4gDmHGjLfkB1Kl585nfHQIhMLB5bKsu49/r eeFtIoXrkT5tXNGUIpH/YcySvTYuIWIk5w3BfZmRq6RuUWTZd8M6kQwSGKz12CwqD58G YyG6CBztpfIOtasoqmI3ABqgXWsXYH7pGDxxe+jS5WtQMvI9IuDTqhU2sUssNHtPHC2Y lF1ot7iNZkU0gt6g+PvzNfshF+GkOoAKRxDnm8Xv7qr/ZgwWtYbqdoL725ZE5tNhsy5g n62w4cMtvNRzsh0eIfEyKEhFLxKdTZvYrIhbzrmOwwLa6bN97eRdj/PyLW76VvBCkOWv sM6Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=juve/IIYEGScWteFZtLPwEdFZasQhU0Ngo3RagXyXF4=; b=cyHBWe67n4iOttXOGlseZrm6k2wAaAHuw4u4Sk4iyXaVSbrKkPPMl4qzRDBsrvrbAL zLC1mId5xTMUzEn/ZtCJJzxcUwK4Rt/k8No/pfmTQSTa0av6bsSfCOdYTbNZlKcnD797 FgHf+gAwSe1QO6AHqBH7DpREFV+qVaHKtYLryfaQwqYGVOP9APGsJD50hpZ7NXW37R3M OMQ3S3kcXulITXf/wnG+FUqN8ctShWB83scjxZL6VIusENDulpzLCH4whRsXx2X4jD0u B+nAWLofoIMwALaSA7T49Z5zdXWZ7hi6JV+8XU/CiS16DM1iugIbD1o731Gmuom0TSkY cZ+Q== X-Gm-Message-State: ANoB5pkPCvbzgTzCd6p9tLboY/hjBDUzL1h51r476D+gGta9zJnLL5gF 5y9uyebO2/Tyi+leXpiFvVoFRy14zIbPFwbjy//a4R0bZ5LDzw== X-Google-Smtp-Source: AA0mqf5sQ70j0yVXcmJR3lDqZVBKWTMQk62Q4kzcmI8+wfU3ImtD7h0tyHytmsrmdxohP3GkBUFEhJfupUBHtNv77LI= X-Received: by 2002:a05:6808:3013:b0:35b:e3c4:afed with SMTP id ay19-20020a056808301300b0035be3c4afedmr14447156oib.44.1670442229851; Wed, 07 Dec 2022 11:43:49 -0800 (PST) MIME-Version: 1.0 References: In-Reply-To: From: Daniel joseph Date: Thu, 8 Dec 2022 00:49:54 -0700 Message-ID: Subject: Re: Vulnerability Report-Broken Authentication To: info@designerliving.com Content-Type: multipart/alternative; boundary="000000000000ba6b0e05ef422380" --000000000000ba6b0e05ef422380 Content-Type: text/plain; charset="UTF-8" Hi Team, Any update regarding the report and bounty? On Fri, Oct 21, 2022 at 11:28 PM Daniel joseph wrote: > Hey Team, > > I'm a penetration tester and bug bounty hunter. I have found a potential > vulnerability in the site. Please review the report below. > > Vulnerability: Broken Authentication & Session Management > We have observed that when we change "password" from one browser in place > of session expiration from another browser it just updates the password > from another browser and the old session gets updated without being logged > out. The flows goes like this: > Broken Authentication and Session Management > Failure to Invalidate > Session > On Password Change > Steps: > 1- Login from two browsers at a time [From Chrome browser and from Mozilla > Firefox]. > 2- Change password in settings from chrome browser. > 3- Now Check Mozilla Firefox. > 4- Your Session got "updated" in place of expiration. > > Same goes with when using two different computer systems. > 1- Login from two computers at a time > 2- Change password in settings from computer A. > 3- Now Check computer B. > 4- Your Session got "updated" in place of expiration. > > Recommendations: If Session is Updating from one Browser/Computer so other > should expire first to renew session after login. > > If you require any additional information, please let me know. I'll be > waiting to hear from your side regarding the report and bounty. > > -- > Regards, > Daniel > -- Regards, Daniel --000000000000ba6b0e05ef422380 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Hi Team,

An= y update regarding the report and bounty?

On Fri, Oct 21, 2022= at 11:28 PM Daniel joseph <danieljoseph11556@gmail.com> wrote:
Hey Team,
I'm a penetration tester and bug bounty hunter. I have found a po= tential vulnerability in the site. Please review the report below.

V= ulnerability: Broken Authentication & Session Management
We have obs= erved that when we change "password" from one browser in place of= session expiration from another browser it just updates the password from = another browser and the old session gets updated without being logged out. = The flows goes like this:
Broken Authentication and Session Management &= gt; Failure to Invalidate Session > On Password Change
Steps:
1- L= ogin from two browsers at a time [From Chrome browser and from Mozilla Fire= fox].
2- Change password in settings from chrome browser.
3- Now Chec= k Mozilla Firefox.
4- Your Session got "updated" in place of e= xpiration.

Same goes with when using two different computer systems.=
1- Login from two computers at a time
2- Change password in settings= from computer A.
3- Now Check computer B.
4- Your Session got "= updated" in place of expiration.

Recommendations: If Session is= Updating from one Browser/Computer so other should expire first to renew s= ession after login.

If you require any additional information, pleas= e let me know. I'll be waiting to hear from your side regarding the rep= ort and bounty.

--
R= egards,
Daniel


--
Regards,
Daniel
--000000000000ba6b0e05ef422380--