The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to "Auto-Detect" then this rule will change the session management to use the tokens identified.
Vulnerability Resolution:
This is an informational alert rather than a vulnerability and so there is nothing to fix.
Workspace:
Default
Description:
The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to "Auto-Detect" then this rule will change the session management to use the tokens identified.
Vulnerability Resolution:
This is an informational alert rather than a vulnerability and so there is nothing to fix.
Evidence:
060072D829980083E944B978EBE8C510
060072D829980083E944B978EBE8C510
89B58F067E73E1B32F4B978A43973A1C
77CA86A07A80E958FC3C8D7CFA8175EB
AB487CF647518DBE83401ED0D52B4A7C
Affected Info:
cookie:JSESSIONID
cookie:JSESSIONID
cookie:JSESSIONID
cookie:JSESSIONID
cookie:JSESSIONID
Affected URL:
https://demo.testfire.net/sitemap.xml
https://demo.testfire.net/sitemap.xml
https://demo.testfire.net/robots.txt
https://demo.testfire.net/login.jsp
https://demo.testfire.net/