Back to directory

WRITEUP #5049

Authenticated CORS with Access-Control-Allow-Origin: *

OtherCaching issueBrowser hacking

by@BitK_(BitK)

Program

Google (Chromium)

Published

Nov 15, 2019

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://web.archive.org/web/20220826045457/https://blog.bi.tk/chrome-cors/

▸ RELATED WRITEUPS

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff

Ghost In The Ppl Part 1: Byovdll

OtherUse-After-Free

Part 2: From Byovdll To Arbitrary Code Execution In Lsass

OtherUse-After-Free

Built with ❤️ by Shubham Rawat