Forum Discussion

Nimbostratus

Jan 27, 2017

The cookie does not contain the "HTTPOnly" attribute.

Hi All, we got vulnerability as below in our vulnerability scan Threat The cookie does not contain the "HTTPOnly" attribute. Impact Cookies without the "HTTPOnly" attribute are permitted ...

Cirrostratus

Jan 27, 2017

Check this one from Aaron. https://devcentral.f5.com/questions/cookie-persistence-sendfor-http-only

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

The cookie does not contain the "HTTPOnly" attribute.

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Does F5 rSeries 4600 support 3rd Party SFP

no upload file .docx

F5 LACP

F5 BGP Peering in Active /Standby Cluster

AS3 Storage

Related Content

Add SameSite attribute to APM Cookies

Lightboard Lessons: HTTP Cookie SameSite Attribute

Set the SameSite Attribute for LTM Persistence Cookies

LDAP Query for Attribute

APM Cookbook: Modify LDAP Attribute Values using iRulesLX

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS