CORS Unblock

CORS Unblock

No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled

  • CORS Unblock
  • CORS Unblock
What is CORS Unblock?
CORS Unblock is a valuable Edge add-on utilized for bypassing 'XMLHttpRequest' and 'fetch' rejections by altering 'Access-Control-Allow' headers in every outstanding request. It can change default header values, manipulate returned 4xx status codes, permit cross-origin frame embedding, and address CORS policies of redirected URLs. Invocation of the add-on is by pressing the action button or through the right click context menu. It also paves the way for debugging by pretending websites to support unsupported server methods or classes.
By: Bermet
Rating: 4.30 (11)
Version: 0.3.8 (Last updated: 2024-02-11)
Creation date: 2021-04-06
Risk impact: Very high risk impact
Risk likelihood: Moderate risk likelihood
Manifest version: 2
  • storage
  • <all_urls>
  • webRequest
  • webRequestBlocking
  • declarativeNetRequest
  • contextMenus
  • debugger
Size: 202.43K
Stats date:

Other platforms

CORS Unblock
CORS Unblock (v0.3.8)
4.16 (152) 200,000
Not available on Firefox
Want to check extension ranking and stats more quickly for other Edge add-ons? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Edge Add-on Store.
Chrome-Stats extension

This extension bypasses the "XMLHttpRequest" and "fetch" rejections by altering the "Access-Control-Allow-Origin" and "Access-Control-Allow-Methods" headers for every request that the browser receives. You can activate the extension by pressing the action button. Also, use the right-click context menu over the action button to modify which headers the extension manipulates. You can also ask the extension not to overwrite these headers when the server returns values for them.

The default values for the headers:

Access-Control-Allow-Origin: request initiator or empty Access-Control-Allow-Methods": GET, PUT, POST, DELETE, HEAD, OPTIONS, PATCH, PROPFIND, PROPPATCH, MKCOL, COPY, MOVE, LOCK Access-Control-Allow-Methods: request initiator or empty Access-Control-Allow-Credentials: true Access-Control-Expose-Headers: request initiator or *

Additional Features:

  1. It can remove the following CSP-related headers: "Content-Security-Policy", "Content-Security-Policy-Report-Only", "X-WebKit-CSP" and "X-Content-Security-Policy".

  2. It can overwrite the returned 4xx status code from the server. Use this feature when a server does not support a method, but you want to pretend it does.

See more
User reviews
User reviews summary
These summaries are automatically generated weekly using AI based on recent user reviews. Edge Add-on Store does not verify user reviews, so some user reviews may be inaccurate, spammy, or outdated.
  • Allows for CORS to be disabled
  • Essential for some users' development work
  • Functional and useful for those it works for
  • Does not work for everyone
  • Issues with local file javascript
  • Some users may need guidance to fix specific errors
Most mentioned
  • Usefulness for development
  • Issues with functionality for some users
  • Support for local files after configuration changes
Recent reviews
Hello developer I trust you're doing well! Currently, I'm exploring opportunities to grow my business by investing in Chrome extensions. Your extension has caught my attention, and I am genuinely interested in discussing the possibility of acquiring it. We can discuss the price and complete the transaction securely through a reputable escrow services ( or Google supports the smooth transfer of extension ownership from one account to another, ensuring your gmail account remains unaffected. If you have any inquiries or if this aligns with your plans, feel free to reach out to us via : Facebook: Whatsapp: +1 6468971986 Skype: live:.cid.7ed1d897457692ce Telegram: @harryysandersonn Twitter: @Sanderson3Harry Looking forward to hearing from you!
by Quentin, 2024-03-16

my savior thank you for this plugin
by Pascal, 2022-05-24

Works fine
by Dominik, 2021-08-30
View all user reviews
Risk impact

CORS Unblock is very risky to use and it requires a lot of sensitive permissions. Avoid installing this add-on unless you absolutely trust this publisher.

Risk likelihood

CORS Unblock is probably trust-worthy. Prefer other publishers if available. Exercise caution when installing this add-on.

Upgrade to see risk analysis details
Promo images
CORS Unblock marquee promo image
Marquee promo image