#1236 new
Narendra Bhati

No HTTP Only Flag Allow An Attacker TO Access Cookies Using XSS Attack

Reported by Narendra Bhati | November 16th, 2014 @ 11:38 AM | in User issues

What is HTTP Only Flag - According To OWASP

If the HttpOnly flag (optional) is included in the HTTP response header, the cookie cannot be accessed through client side script (again if the browser supports this flag). As a result, even if a cross-site scripting (XSS) flaw exists, and a user accidentally accesses a link that exploits this flaw, the browser (primarily Internet Explorer) will not reveal the cookie to a third party.

Your cookies are not set as http only flag thats why an attacker can hijack the session cookies by using XSS attack , for further attacks like session hijacking

POC attached with this ticked

Comments and changes to this ticket

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป

Bug Tracker for Exponent CMS

Shared Ticket Bins

People watching this ticket