Details
-
Type:
Language-Specification
-
Status: Active
-
Resolution: Unresolved
-
Labels:None
-
Impact:Unknown 'null' severity
-
Likelihood:Unknown 'null' severity
Description
Sensitive Code Example
// === .Net Framework === HttpCookie myCookie = new HttpCookie("UserSettings"); myCookie["CreditCardNumber"] = "1234 1234 1234 1234"; // Sensitive; sensitive data stored myCookie.Values["password"] = "5678"; // Sensitive myCookie.Value = "mysecret"; // Sensitive ... Response.Cookies.Add(myCookie); // === .Net Core === Response.Headers.Add("Set-Cookie", ...); // Sensitive Response.Cookies.Append("mykey", "myValue"); // Sensitive