No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled
What is CORS Unblock?
CORS Unblock is an Edge add-on by Bermet. This add-on has 24,884 weekly active users and a good user rating of 4.20. The latest version, 0.3.6, was updated 2 months ago.
Rating: 4.20 (10)
Version: 0.3.6 (Last updated: 2023-01-14)
Creation date: 2021-04-06
Manifest version: 2
Risk impact: Very high risk impact
Risk likelihood: Moderate risk likelihood
Found a bug?
This extension bypasses the "XMLHttpRequest" and "fetch" rejections by altering the "Access-Control-Allow-Origin" and "Access-Control-Allow-Methods" headers for every request that the browser receives. You can activate the extension by pressing the action button. Also, use the right-click context menu over the action button to modify which headers the extension manipulates. You can also ask the extension not to overwrite these headers when the server returns values for them. The default values for the headers: Access-Control-Allow-Origin: request initiator or empty Access-Control-Allow-Methods": GET, PUT, POST, DELETE, HEAD, OPTIONS, PATCH, PROPFIND, PROPPATCH, MKCOL, COPY, MOVE, LOCK Access-Control-Allow-Methods: request initiator or empty Access-Control-Allow-Credentials: true Access-Control-Expose-Headers: request initiator or * Additional Features: 1. It can remove the following CSP-related headers: "Content-Security-Policy", "Content-Security-Policy-Report-Only", "X-WebKit-CSP" and "X-Content-Security-Policy". 2. It can overwrite the returned 4xx status code from the server. Use this feature when a server does not support a method, but you want to pretend it does.
CORS Unblock requires a lot of risky permissions and is not safe to use. Avoid installing this add-on unless you absolutely trust this publisher.
Subscribe to the premium plan to see more risk analysis details
CORS Unblock is probably trust-worthy. Prefer other publishers if available. Exercise caution when installing this add-on.
Does not work in the slightest. Bummer! Still have to manually disable CORS for dev work, then re-enable it. Anyone have a working plugin?
my savior thank you for this plugin
View all user reviews