Бил через ironWASP сайтец и нашел уязвимость в куки но хз как реализовать:
--------------------
Cookie _public_consultation_session missing the Secure flag
Plugin: CookieAnalysis
Severity: Medium
Confidence: High
Summary:
The Secure flag was missing on the cookie: _public_consultation_session. This may allow the cookie to be transferred over an insecure channel.
One pair of Request and Response that was analyzed to identify this vulnerability is available in the adjacent tabs.
Below you can see the sections of the Response that are of interest ( highlighted in green ). Non-interesting sections have been stripped away for clarity.
Analyzed Response:
The value of the cookie is not protected by Secure flag and hence becomes accessible over HTTP
HTTP/1.1 200 OK
Date: ---
[---- Snipped parts of HTTP headers section for brevity ----]
Set-Cookie: _public_consultation_session=WmNLNDYwQTk1__________NEN0Q2hIeTdwWnFpbHJKRjVoVEFpVDJheVdLZ1Y3YUEzZXFjUGpxbXZ1dnA5Q0VXTUVYeFl_______XkyWmpGc1dRREs3cHFUMDA4WC9DQXRzY3ZBRUxkTVBGMC9FeU5QOUg2endWdm51dCtIUjl1NTFNOTJUVWlDWHpIM3NVT01PM2ZnPT0tLVMzdndKL1lP_________5OT1hlVFE9PQ%3D%3D--1a3a7_________fae9ea7505106d5711ffc61ae09; path=/; HttpOnly
[---- Snipped parts of HTTP headers section for brevity ----]
Vary: Origin
--------------------
Cookie _public_consultation_session missing the Secure flag
Plugin: CookieAnalysis
Severity: Medium
Confidence: High
Summary:
The Secure flag was missing on the cookie: _public_consultation_session. This may allow the cookie to be transferred over an insecure channel.
One pair of Request and Response that was analyzed to identify this vulnerability is available in the adjacent tabs.
Below you can see the sections of the Response that are of interest ( highlighted in green ). Non-interesting sections have been stripped away for clarity.
Analyzed Response:
The value of the cookie is not protected by Secure flag and hence becomes accessible over HTTP
HTTP/1.1 200 OK
Date: ---
[---- Snipped parts of HTTP headers section for brevity ----]
Set-Cookie: _public_consultation_session=WmNLNDYwQTk1
[---- Snipped parts of HTTP headers section for brevity ----]
Vary: Origin
Последнее редактирование: