79639228

Date: 2025-05-26 15:40:32
Score: 3
Natty:
Report link

Did you check if you are using flag "HttpOnly" at Set-Cookie header?

If your Laravel try to get the "XSRF-TOKEN" using JavaScript, the browser will not allow it with flag "HttpOnly", so try remove this flag.

Reasons:
  • Low length (0.5):
  • No code block (0.5):
  • Contains question mark (0.5):
  • Starts with a question (0.5): Did you
  • Low reputation (1):
Posted by: Thiago Cruz