Skip to main content

CORS vulnerability with basic origin reflection

$ tldr PortSwigger · CORS

Solve the lab

Resources by skill

CORS (Cross-Origin Resource Sharing)

Comments & tips

Solved this lab a different way? Share it here — comments live in GitHub Discussions.
Last updated: 2026-06-07