/alerttags/wstg-v42-sess-04/ Recent content in WSTG-V42-SESS-04 on ZAP Hugo en-us /docs/alerts/3-3/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/3-3/ <p>A hyperlink pointing to another host name was found. As session ID URL rewrite is used, it may be disclosed in referer header to external hosts.</p> /docs/alerts/3-1/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/3-1/ <p>URL rewrite is used to track user session ID. The session ID may be disclosed via cross-site referer header. In addition, the session ID might be stored in browser history or server logs.</p> /docs/alerts/3-2/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/alerts/3-2/ <p>URL rewrite is used to track user session ID. The session ID may be disclosed via cross-site referer header. In addition, the session ID might be stored in browser history or server logs.</p>