CWE-614
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute
The Secure attribute for sensitive cookies in HTTPS sessions is not set.
Official CWE-614 definition at MITREImpactr finds and proves weaknesses like CWE-614 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist