VRT Category Suggestions - Failure to Invalidate Session on Account Deletion #498
Description
P4: Broken Authentication and Session Management > Failure to Invalidate Session > On Account Deletion
We already have several entries into this category related to an application failing to invalidate a session based on a certain criteria, however none related to this behaviour.
I've seen this issue being accepted as P5, however, I believe an initial entry at P4 and monitor customer trends if a re-classification is required.