Sensitive Cookie in HTTPS Session Without 'Secure' Attribute in GitHub repository ikus060/rdiffweb before 2.4.6.
ikus-soft rdiffweb