From what I understand, HttpOnly cookies cannot be read by client js but they are passed by the browser with any subsequent requests. If an attacker is able to
picat
inserthtml
google-cloud-pubsublite
enaml
cellpadding
scalability
instantiation-error
aws-kinesis
angular2-http
visidata
django-oauth-toolkit
information-gain
digit-separator
walmart-api
expandoobject
bayessearchcv
pyflakes
create-vue
apache-camel
workwithplus
container-view
libmosquitto
gotjs
action-hook
arcmap
horizontal-scaling
stringification
excel-web-addins
fipy
preset
