In part -1 we are covering the following attacks. In this article, we list some of the common web application attacks, impacts, and possible mitigation. The attacks include malicious file uploads, malicious file files and malicious server-side scripts. An attacker can gain access to the server and launch further attacks to compromise the service. The HTTPOnly attribute make sure that the cookies can be accessed via HTTP methods only. Without this attribute, other entities (mainly java code) can be used to access the cookies.”]
Source: https://gbhackers.com/web-application-attacks-part1/