Cookie Without Secure Flag

Vulnerability Details

Severity:

Low

Category:

Web Application

Description

Session cookies or other sensitive cookies are set without the Secure flag, allowing them to be transmitted over unencrypted HTTP connections.

Risks

An attacker performing a man-in-the-middle attack on an unencrypted connection could intercept session cookies or other sensitive cookie values.

Remediation

Set the Secure flag on all cookies containing sensitive information. Enforce HTTPS across the entire application. Implement HSTS to prevent HTTP downgrade attacks.

References

https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/06-Session_Management_Testing/02-Testing_for_Cookies_Attributes