Vulnerabilities arising from CORS configuration issues
APPRENTICE
Lab: CORS vulnerability with basic origin reflection
APPRENTICE
Server-generated ACAO header from client-specified Origin header
APPRENTICE
Errors parsing Origin headers
APPRENTICE
Errors parsing Origin headers - Continued
APPRENTICE
Whitelisted null origin value
APPRENTICE
Lab: CORS vulnerability with trusted null origin
APPRENTICE
Exploiting XSS via CORS trust relationships
APPRENTICE
Exploiting XSS via CORS trust relationships - Continued
APPRENTICE
Breaking TLS with poorly configured CORS
APPRENTICE
Lab: CORS vulnerability with trusted insecure protocols
PRACTITIONER
Intranets and CORS without credentials
APPRENTICE