Findings · Security
Cookie Security Flags
Cookies should have Secure, HttpOnly, and SameSite flags to prevent theft and CSRF
0%
of 1,042 scanned sites fail this check
Fail
0%
0 scans
Warning
40.1%
418 scans
Pass
59.9%
624 scans
Why it matters
This check belongs to Security — is it safe? It's rated high severity. Cookies should have Secure, HttpOnly, and SameSite flags to prevent theft and CSRF
The fix
Vettd's Fix Pack includes a copy-paste-ready solution for this check — auto-generated for your specific site, in the right format for your stack. See pricing, or scan first to see what your site needs.
Check your own site for this.
Vettd runs this check (and 81 others) on any URL. Free, no signup, ~30 seconds.
Scan your site →