Category: Security

Relation between sessions and cookies


A session is a set of data that is stored on the server, usually as key-value pairs. A session is assigned a pseudo-random, secret ID that is usually stored in the user’s browser using a cookie, for example SESSID=abcdef123456789. The session ID typically matches the name of a file containing the session data on the … Continue reading

How to fix the intentionally vulnerable plugin?


How to fix the intentionally vulnerable plugin