Details | |
---|---|
Alert ID | 10054-2 |
Alert Type | Passive |
Status | release |
Risk | Low |
CWE | 1275 |
WASC | 13 |
Technologies Targeted | All |
Tags |
CWE-1275 OWASP_2017_A05 OWASP_2021_A01 WSTG-V42-SESS-02 |
More Info |
Scan Rule Help |
Summary
A cookie has been set with its SameSite attribute set to “none”, which means that the cookie can be sent as a result of a ‘cross-site’ request. The SameSite attribute is an effective counter measure to cross-site request forgery, cross-site script inclusion, and timing attacks.