API Security Checked by Vezraa
Cross-Origin Resource Sharing (CORS)
A browser mechanism controlling which origins can access your web resources.
CORS defines which origins, HTTP methods, and headers are allowed when browsers make cross-origin requests to your server. Misconfigured CORS (especially wildcard origins with credentials) can expose your API to unauthorized cross-origin access.