s0md3v/Corsy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #8 from afranche/master

Browse Source 
Correct typos in errors details messages
This commit is contained in:
Somdev Sangwan
2019-11-28 11:11:35 +05:30
committed by GitHub
parent 44cbdacc71 56a8c48c6b
commit d1da167b82
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
db/details.json
View File

@@ -7,7 +7,7 @@
"third party allowed" : {
"Description" : "This host has whitelisted a third party host for cross origin requests.",
"Severity" : "Medium",
"Exploitation" : "If the whitelisted host is a code hosting platform such as codepen.io or has an XSS vulnerbaility, it can be used to exploit this misconfiguration."
"Exploitation" : "If the whitelisted host is a code hosting platform such as codepen.io or has an XSS vulnerability, it can be used to exploit this misconfiguration."
},
"origin reflected" : {
@@ -21,7 +21,7 @@
"Exploitation" : "Not possible"
},
"post-domain wildcard" : {
"Description" : "The origin verification is flawed, it allows requests from a host that has this host as a preffix.",
"Description" : "The origin verification is flawed, it allows requests from a host that has this host as a prefix.",
"Severity" : "High",
"Exploitation" : "Make requests from target.com.attacker.com"
},
@@ -33,7 +33,7 @@
"null origin allowed" : {
"Description" : "This host allows requests from 'null' origin.",
"Severity" : "High",
"Exploitation" : "Make requests from a sanboxed iframe."
"Exploitation" : "Make requests from a sandboxed iframe."
},
"http origin allowed" : {
"Description" : "This host allows sharing resources over an unencrypted (HTTP) connection.",