CORS Everywhere allows to anonymously fetch resources across origin

What is CORSE?
CORSE is a Firefox add-on called CORS Everywhere, which enables the anonymous retrieval of resources from different origins by setting the Access-Control-Allow-Origin header to * in all responses, except when the Access-Control-Allow-Credentials header is present.
Users: 50
Version: 1.1 (Last updated: 2020-04-22)
Creation date: 2020-04-22
Weekly download count: 1
Firefox on Android: Yes
Risk impact: High risk impact
Risk likelihood: Low risk likelihood
Manifest version: 2
  • <all_urls>
  • webRequest
  • webRequestBlocking
Size: 10.65K
Stats date:

Other platforms

Not available on Chrome
Not available on Edge
Want to check extension ranking and stats more quickly for other Firefox add-ons? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Firefox Browser Add-ons.
Chrome-Stats extension

For all responses this extension sets Access-Control-Allow-Origin to * except if response contains Access-Control-Allow-Credentials header

Risk impact

CORSE is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this add-on. Review carefully before installing. We recommend that you only install CORSE if you trust the publisher.

Risk likelihood

CORSE has earned a fairly good reputation and likely can be trusted.

Upgrade to see risk analysis details