Описание
An unauthenticated remote attacker can take advantage of the current overly permissive CORS policy to gain access and read the responses, potentially exposing sensitive data or enabling further attacks.
An unauthenticated remote attacker can take advantage of the current overly permissive CORS policy to gain access and read the responses, potentially exposing sensitive data or enabling further attacks.
Связанные уязвимости
An unauthenticated remote attacker can trick an admin to visit a website containing malicious java script code. The current overly permissive CORS policy allows the attacker to obtain any files from the file system.
Уязвимость программного средства для настройки и параметризации контроллеров WAGO Device Manager, связанная с ошибками конфигурации политики CORS, позволяющая нарушителю получить несанкционированный доступ к файловой системе