Y
Hacker News
new
|
ask
|
show
|
jobs
by
moi2388
75 days ago
A cookie is susceptible to both xss and CSRF. You ought to be protecting against xss anyway.