From what I understand, HttpOnly cookies cannot be read by client js but they are passed by the browser with any subsequent requests. If an attacker is able to
connection-timeout
floating-point-conversion
pattern-synonyms
templates
odbcdatareader
asp.net-core-staticfile
covariogram
overlay-view
angular-maps
taglist
amazon-web-services">amazon-web-services
base62
dock
halcon
operational-transform
oculus
fpdf
react-native-iap
kotlin-js-interop
core
httpservice
neurolab
django-custom-field
cryptographicexception
go-micro
pbs
express-checkout
xnat
r-googlesheets
git-show
amazon-web-services