diff --git a/includes/YesWikiInit.php b/includes/YesWikiInit.php
index a1bd5a0f6..b267e4acc 100644
--- a/includes/YesWikiInit.php
+++ b/includes/YesWikiInit.php
@@ -339,6 +339,7 @@ public function initCookies()
         if (!isset($_SESSION)) {
             $cookiesParam = session_get_cookie_params();
             $cookiesParam['path'] = $CookiePath;
+            $cookiesParam['httponly'] = true;
             session_set_cookie_params($cookiesParam);
             session_name($sessionName);
             session_start();