Long version:
What is the bug?
When a user logs out of an application, the app must clear the browser cache. Failure to do so, results in browser cache weakness.
How to find this bug?
Refer short version 😁
Impact of the bug:
The attacker needs physical access to the victim’s machine in order to exploit this bug. Hence it has a considerably low impact.
Possible fix:
The web server should return the following HTTP headers in all responses containing sensitive content:
Cache-control: no-store
Pragma: no-cache
PS : Somehow this informational bug fetched me a bounty 😉
