VYPR

Cors

by Rs

Source repositories

CVEs (2)

  • CVE-2025-47908HigAug 6, 2025
    risk 0.42cvss 7.5epss 0.01

    Middleware causes a prohibitive amount of heap allocations when processing malicious preflight requests that include a Access-Control-Request-Headers (ACRH) header whose value contains many commas. This behavior can be abused by attackers to produce undue load on the…

  • CVE-2018-20744Jan 28, 2019
    risk 0.00cvss epss 0.01

    The Olivier Poitrey Go CORS handler through 1.3.0 actively converts a wildcard CORS policy into reflecting an arbitrary Origin header value, which is incompatible with the CORS security design, and could lead to CORS misconfiguration security problems.