Merge pull request #577 from intrigus-lgtm/patch-3

Update query description
2026-01-29 22:32:58 +01:00 · 2021-09-27 13:50:08 +01:00
parent cc1d1d8d1b d26841da57
commit 8b3682205b
1 changed files with 1 additions and 1 deletions
--- a/ql/src/experimental/CWE-942/CorsMisconfiguration.ql
+++ b/ql/src/experimental/CWE-942/CorsMisconfiguration.ql
@@ -1,7 +1,7 @@
 /**
 * @name CORS misconfiguration
 * @description If a CORS policy is configured to accept an origin value obtained from the request data,
- * 				or is set to `*` or `null`, and it allows credential sharing, then the users of the
+ * 				or is set to `null`, and it allows credential sharing, then the users of the
 * 				application are vulnerable to the same range of attacks as in XSS (credential stealing, etc.).
 * @kind problem
 * @problem.severity warning