Http Cookie Samesite Not Initialized
Description
Detects sensitive cookies (like authentication or session cookies) that have their SameSite attribute explicitly set to "None". This configuration makes these cookies vulnerable to cross-site request forgery (CSRF) attacks since they can be sent in cross-origin requests.
Detection Strategy
• Examines Set-Cookie headers in HTTP responses
• Checks if the cookie name indicates sensitive content (e.g., auth, session, token)
• Verifies if the SameSite attribute is explicitly set to 'None'
• Reports a vulnerability when a sensitive cookie is found with SameSite=None
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.