search

PHSCDC / itocdc-2015-www

An insecure PHP web app for the Iowa State University 2015 IT Olympics Cyber Defense Competition (ITOCDC)
MIT License
0 stars 1 forks source link

Upon logout, cookies are marked as expired, not deleted #28

Closed jummy0 closed 9 years ago

jummy0 commented 9 years ago 
setcookie("PHPSESSID", authenticated_session($email), time()-3600);
setcookie("user", $email, time()-3600);

Cookie is marked as expired rather than deleted. Some browsers may not delete the cookie properly.