Cookie without HttpOnly Flag
HttpOnly flag can help to mitigate Cross-Site-Scripting(XSS) attacks.
HttpOnly flag for the cookie.
👉 You might also like:
Session Cookie without HttpOnly Flag - Vulnerability
Cookie without Secure Flag - Vulnerability
Session Cookie without Secure Flag - Vulnerability
Cookie without SameSite Flag - Vulnerability
Last updated on February 15, 2021