Cookie not marked as HTTPonly

  • Resolved prachi2patel

    (@prachi2patel)


    8 months, 2 weeks ago

    Our scanner has identified that wpdef_lockout_52_203_178_18 this cookie which generated by defender plugin is not marked as HttpOnly.

    Can you please make this changes ?

    Set-Cookie: wpdef_lockout_52_203_178_18=1; expires=Wed, 24 Sep 2025 15:09:47 GMT; Max-Age=3600; path=/; secure

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support Jair – WPMU DEV Support

    (@wpmudevsupport15)

    8 months, 2 weeks ago

    Hello @prachi2patel

    I’m informing our development team to check this, so they can decide to make this change.

    Can you tell me more about the tool or service you used to scan the cookies of your site. It may help us with our investigations?

    Kind regards,
    Jair.

    Plugin Support Dmytro – WPMU DEV Support

    (@wpmudevsupport16)

    8 months, 1 week ago

    Hello @prachi2patel,

    We have received further feedback from the developers, that the fix should be implemented in one of the next versions, but we don’t have ETA.

    You can monitor the latest updates on the Development tab here.

    I’ll be marking this thread as resolved for now. Please feel free to reopen it, in case you have any further questions.

    Best Regards,
    Dmytro

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Cookie not marked as HTTPonly’ is closed to new replies.