Author:
zores <hi>
Date:
5/28/2017 7:17:58 AM
Subject:
RE: Stored Cross Site Scripting
Corected typos:
The easy fix is to add the httponly flag to your PHPSESSID cookie. This way the browser will return a null when the document.cookie is invoked.
_