F042. Insecurely generated cookies

Description

The application’s cookies are generated without properly setting the HttpOnly, Secure and SameSite attributes. This could enable an attacker to compromise a user’s session through XSS, sniffing or CSRF attacks.

Copyright © 2020 Fluid Attacks, We hack your software. All rights reserved.

Service status - Terms of Use - Privacy Policy - Cookie Policy