zlacker
[parent]
[thread]
0 comments
1. dlubar+(OP)
[view]
[source]
2018-09-28 17:29:01
Possibly -- if the attacker accessed session IDs, they could potentially hijack the sessions of logged-in users. If you log out, most servers will destroy the session data on their backend, so there's no session that can be hijacked.
[go to top]