Chrome-Stats extension
Set Cookie: No secure - No HttpOnly
Disable 'Secure' & 'HttpOnly' in set-cookie header
What is Set Cookie: No secure - No HttpOnly?
Set Cookie: No secure - No HttpOnly is a Firefox add-on that allows you to disable the 'Secure' and 'HttpOnly' flags in the set-cookie header.
Stats
By:
ThomazPom
Rating:
5.00
(5)
Creation date:
2018-10-10
Weekly download count:
89
Firefox on Android:
No
Risk impact:
High risk impact
Risk likelihood:
Moderate risk likelihood
Manifest version:
2
Permissions:
- <all_urls>
- webRequest
- webRequestBlocking
- storage
Size:
88.79K
URLs:
Website
Stats date:
Chrome-Stats Rank
Other platforms
Not available on Chrome
Not available on Edge
Want to check extension ranking and stats more quickly for other Firefox add-ons?
Install
Chrome-Stats extension
to view Chrome-Stats data as you browse the Firefox Browser Add-ons.
Summary
Disable 'Secure' & 'HttpOnly' in set-cookie header
User reviews
I was wondering if there is a way to selectively remove the 'HttpOnly' flag for specific domain names using your addon. Currently, it applies this setting to all websites, which I believe poses a significant security risk. I only need to remove the flag for a single website (to show it in an iframe), and if you could implement this feature, it would greatly improve the addon's functionality. Your efforts would definitely earn it a 5-star rating from me. Thank you!
by
Alex, 2023-09-01
Safety
Risk impact
Set Cookie: No secure - No HttpOnly is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this add-on. Review carefully before installing. We recommend that you only install Set Cookie: No secure - No HttpOnly if you trust the publisher.
Risk likelihood
Set Cookie: No secure - No HttpOnly is probably trust-worthy. Prefer other publishers if available. Exercise caution when installing this add-on.
Upgrade to see risk analysis details