Chromium bug allowed SameSite cookie bypass on Android devices _portswigger.net
| posted by rouiejay12 in : threats | No comments |
1

A recently patched bug in the Chromium project could allow malicious actors to bypass a security feature that protects sensitive cookies on Android browsers.

The SameSite setting enables developers to restrict access to cookies. For example, by setting SameSite=strict, this can prevent a cookie from showing up in HTTP responses if the user navigates to the website through a link or a redirect request from another website.

Comments

You must log in or register to comment.

There's nothing here…