A cookie has been set without the secure flag, which means that the cookie can be accessed via unencrypted connections.
A cookie has been set without the secure flag, which means that the cookie can be accessed via unencrypted connections.
Low
Whenever a cookie contains sensitive information or is a session token, then it should always be passed using an encrypted channel. Ensure that the secure flag is set for cookies containing such sensitive information.
We make your startup secure and compliant by implementing and managing the security controls your customers require.