An issue exists in PHP-Fusion 9.03.50 where session cookies are not deleted once a user logs out, allowing for an attacker to perform a session replay attack and impersonate the victim user.Referenceshttps://github.com/PHPFusion/PHPFusion/issues/2314
