Session management issue
-
Hi,
I have a question and probably found a bug / potential security vulnerabilities..
I’m using WooCommerce and i’m logged in two devices, on the second device I’m changing the email (my account woocommerce page) and unfortunately on other devices I’m still logged in, so potential hacker can still have my session even after the email is changed..
If I change the password I’m logged out from other devices, is it possible to add this feature to the plugin, that when I change the email, other sessions will be terminated?
Thanks,
Piotr
Viewing 8 replies - 1 through 8 (of 8 total)
Viewing 8 replies - 1 through 8 (of 8 total)
- The topic ‘Session management issue’ is closed to new replies.