Session Management Response Identified

The given response has been identified as containing a session management token. The 'Other Info' field contains a set of header tokens that can be used in the Header Based Session Management Method. If the request is in a context which has a Session Management Method set to "Auto-Detect" then this rule will change the session management to use the tokens identified.

This is an informational finding that identifies the presence of session management tokens in responses, which helps security testing tools understand the application’s authentication mechanism. While not a vulnerability itself, it indicates the application uses session-based authentication, which should be reviewed to ensure tokens are properly secured with appropriate flags, transmitted securely, and protected against common session attacks like fixation or hijacking.

This is an informational alert rather than a vulnerability and so there is nothing to fix.