VYPR

npm package

@elysiajs/cors

pkg:npm/%40elysiajs/cors

Vulnerabilities (1)

  • CVE-2025-50864MedAug 20, 2025
    affected < 1.3.1fixed 1.3.1

    An Origin Validation Error in the elysia-cors library thru 1.3.0 allows attackers to bypass Cross-Origin Resource Sharing (CORS) restrictions. The library incorrectly validates the supplied origin by checking if it is a substring of any domain in the site's CORS policy, rather th