HTTP Session Cookies

This script is Copyright (C) 2010-2015 Tenable Network Security, Inc.

Synopsis :

HTTP session cookies used on the remote web server can be identified.

Description :

The remote web application uses cookies to track authenticated users.
By removing the cookies, one-by-one, and checking a protected page, it
is possible to identify these cookies.

Solution :


Risk factor :


Family: Web Servers

Nessus Plugin ID: 44987 (http_session_cookie.nasl)

Bugtraq ID:


Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now