Summary by h_-_cker
This session management vulnerability was found when Zapinfo platform was also supporting its own set of credentials instead of Indeed credentials only. The program's team is very professional to accept the issues when there's impact. It was resolved through parallel & independent changes to the application's authentication workflow.