CORS Unblock

CORS Unblock

No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled

CORS Unblock promo image
What is CORS Unblock?

CORS Unblock is an Edge add-on by Bermet. This add-on has 24,884 weekly active users and a good user rating of 4.20. The latest version, 0.3.6, was updated 2 months ago.

Stats date:
By: Bermet
Rating: 4.20 (10)
Version: 0.3.6 (Last updated: 2023-01-14)
Creation date: 2021-04-06
Manifest version: 2
  • storage
  • <all_urls>
  • webRequest
  • webRequestBlocking
  • declarativeNetRequest
  • contextMenus
  • debugger
Size: 202.36K
Risk impact: Very high risk impact
Risk likelihood: Moderate risk likelihood
Found a bug?

Other platforms

CORS Unblock
CORS Unblock (v0.3.6)
108 152,652
Not available on Firefox
This extension bypasses the "XMLHttpRequest" and "fetch" rejections by altering the "Access-Control-Allow-Origin" and "Access-Control-Allow-Methods" headers for every request that the browser receives. You can activate the extension by pressing the action button. Also, use the right-click context menu over the action button to modify which headers the extension manipulates. You can also ask the extension not to overwrite these headers when the server returns values for them.

The default values for the headers:

Access-Control-Allow-Origin: request initiator or empty
Access-Control-Allow-Methods: request initiator or empty 
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: request initiator or *

Additional Features:
1. It can remove the following CSP-related headers: 
"Content-Security-Policy", "Content-Security-Policy-Report-Only", "X-WebKit-CSP" and "X-Content-Security-Policy".

2. It can overwrite the returned 4xx status code from the server. Use this feature when a server does not support a method, but you want to pretend it does. 
See more
Risk impact

CORS Unblock requires a lot of risky permissions and is not safe to use. Avoid installing this add-on unless you absolutely trust this publisher.

Risk impact measures the level of extra permissions an extension has access to. A low risk impact extension cannot do much harms, whereas a high risk impact extension can do a lot of damage like stealing your password, bypass your security settings, and access your personal data. High risk impact extensions are not necessarily malicious. However, if they do turn malicious, they can be very harmful.

Risk likelihood

CORS Unblock is probably trust-worthy. Prefer other publishers if available. Exercise caution when installing this add-on.

Risk likelihood measures the probability that an Edge add-on may turn malicious. This is determined by the publisher and the Edge add-on reputation on Edge Add-on Store, the amount of time the Edge add-on has been around, and other signals about the Edge add-on. Our algorithms are not perfect, and are subject to change as we discover new ways to detect malicious extensions. We recommend that you always exercise caution when installing an Edge add-on, especially ones with higher risk impact and/or higher risk likelihood.

Subscribe to the premium plan to see more risk analysis details
User reviews
Does not work in the slightest. Bummer! Still have to manually disable CORS for dev work, then re-enable it. Anyone have a working plugin?
by Dave, 2022-06-05

my savior thank you for this plugin
by Pascal, 2022-05-24

Works fine
by Dominik, 2021-08-30
View all user reviews
Promo images
CORS Unblock marquee promo image
Marquee promo image