In `dapps`, version 1.3.0 is vulnerable to `Insufficient Session Expiration` vulnerability, since the application session management functionality work in a manner where it fails to invalidate a session (in another browser instance Ex: Firefox) even after the password is changed (in one browser Ex: Chrome instance). This flaw allows a user to be logged and perform functions; wherein the current user session must be invalidated immediately after changing the user password.