writeups.xyz / Exploiting Insecure Cross Origin Resource Sharing ( CORS ) | api.artsy.net

Submitter : c2a

Date: 10 October 2017

Bounty : undisclosed

Vulnerabilities :

CORS Misconfiguration

Programs :

Artsy

Authors :

Muhammad Khizer Javed (@Khizer_javed47)

Link :
https://blog.securitybreached.org/2017/10/10/exploiting-insecure-cross-origin-resource-sharing-cors-api-artsy-net