Compare Revisions

Document.cookie

Revision 457733:

Revision 457733 by JohanAndersson on

Revision 459611:

Revision 459611 by EricLaw1979 on

Title:
document.cookie
document.cookie
Slug:
Web/API/document.cookie
Web/API/document.cookie
Tags:
"Gecko DOM Reference","DOM","Gecko","Cookies","HTTP"
"Gecko DOM Reference","DOM","Gecko","Cookies","HTTP"
Content:

Revision 457733
Revision 459611
n437      Cookies are often used in web application to identify a usen437      Cookies are often used in web application to identify a use
>r and their authenticated session. So stealing cookie from a web >r and their authenticated session. So stealing cookie from a web 
>application, will lead to hijacking the authenticated user's sess>application, will lead to hijacking the authenticated user's sess
>ion. Common ways to steal cookies is by using Social Engineering >ion. Common ways to steal cookies include using Social Engineerin
>or by exploiting an XSS vulnerability in the application - >g or by exploiting an XSS vulnerability in the application -&nbsp
 >;
t443      You may like to check out <a href="/en-US/docs/Web_Developmt443      The HTTPOnly cookie attribute can&nbsp;help to mitigate thi
>ent/HTTP_cookies" title="/en-US/docs/Web_Development/HTTP_cookies>s attack by preventing access to cookie value through Javascript.
>">HTTP Cookies</a> which will help to reduce this kind of issue b> Read more about <a class="external" href="http://www.nczonline.n
>y preventing access to cookie value through Javascript. Read more>et/blog/2009/05/12/cookies-and-security/" title="http://www.nczon
> about <a class="external" href="http://www.nczonline.net/blog/20>line.net/blog/2009/05/12/cookies-and-security/">Cookies and Secur
>09/05/12/cookies-and-security/" title="http://www.nczonline.net/b>ity</a>.
>log/2009/05/12/cookies-and-security/">Cookies and Security</a>. 

Back to History