Hi Erel,
Set cookie (jsessionid) HttpOnly will prevent XSS attack.See http://en.wikipedia.org/wiki/HTTP_cookie#Secure_and_HttpOnly
I hope this feature can be added.
Thanks,
bz
Set cookie (jsessionid) HttpOnly will prevent XSS attack.See http://en.wikipedia.org/wiki/HTTP_cookie#Secure_and_HttpOnly
I hope this feature can be added.
Thanks,
bz