This is my first question in stackoverflow.
I am not asking the full process to exploit CORS because its gonna be a very long., BUT, i want to know,
How exploit when the response has only **ACCESS CONTROL ALLOW ORIGIN with * header?**
-Without this header **ACCESS CONTROL ALLOW CREDNTIALS: true**.
Hope you got my point?
Thanks
Aucun commentaire:
Enregistrer un commentaire