Add script http-cookie-flags.nse: Report insecurely set HTTP session cookie flags. #669
Examines cookies set by HTTP services. Reports any session cookies set without the httponly flag. Reports any session cookies set over SSL without the secure flag. If http-enum.nse is also run, any interesting paths found by it will be checked in addition to the root.
…o check flags on. Changed is_session_cookie() into a closure implementing desired session cookie name test.