Cross-origin resource sharing (CORS)... CVE-2021-27786

6.8 AV AC AU C I A
发布: 2022-06-09
修订: 2024-11-21

Cross-origin resource sharing (CORS) enables browsers to perform cross domain requests in a controlled manner. This request has an Origin header that identifies the domain that is making the initial request and defines the protocol between a browser and server to see if the request is allowed. An attacker can take advantage of this and possibly carry out privileged actions and access sensitive information when the Access-Control-Allow-Credentials is enabled.

0%
暂无可用Exp或PoC
当前有3条受影响产品信息