Is it possible to inject cookies through a website?

Asked

Viewed 179 times

2

Suppose the following situation:

When accessing a site (technology forum), this site would inject cookies so that when I access another site (store selling products), it would account for this visit as the origin of the first site (similar to a program of affiliated websites for example).

Such manipulation of cookies by third-party websites would be possible?

  • The question is asking only one question.

  • I don’t understand why it was closed down too, and it’s a question that can bring very interesting answers regarding application security.

1 answer

3


In practice this is not possible, since cookies belong to a single domain.

This means that Voce can make a cookie work in two places like teste.exemplo.com and teste2.exemplo.com, but never come between teste.com and teste2.com for security reasons.

  • and who defines these security reasons ? :)

  • The platform, in this case the browser

Browser other questions tagged

You are not signed in. Login or sign up in order to post.