hostinger_POC
Arrow Left
Back
Arrow Right
Go to Legal Section
⚠ Hostinger CORS Misconfiguration — Proof of Concept
CWE-942: Permissive Cross-domain Policy with Untrusted Domains
Target: hpanel.hostinger.com/api/message-hub/*
Current Origin:
Target Origin:
https://hpanel.hostinger.com
Cross-Origin:
▶ RUN EXPLOIT