Improved cookie security | ww.wp.xz.cn

Resolved svenseeberg
(@svenseeberg)

3 years, 3 months ago
The cookie swpm_session is currently not using the httpOnly and secure cookie flag. I cannot see that the cookie is used by any JavaScript, therefore the HttpOnly flag should be okay. If HTTPS is available, the secure flag would also be a good idea.

I could not find an issue tracker or development repo where I could raise a ticket or contribute a PR. If there is one, please let me know.
- This topic was modified 3 years, 3 months ago by svenseeberg.
- This topic was modified 3 years, 3 months ago by svenseeberg.
- This topic was modified 3 years, 3 months ago by svenseeberg.

Viewing 1 replies (of 1 total)

Plugin Support mbrsolution
(@mbrsolution)

3 years, 3 months ago

Hi, please use the following github URL if you want to submit a pr.

https://github.com/wp-insider/simple-membership/pulls

Thank you.

Viewing 1 replies (of 1 total)

The topic ‘Improved cookie security’ is closed to new replies.

1 reply
2 participants
Last reply from: mbrsolution
Last activity: 3 years, 3 months ago
Status: resolved