[FALSE-NEGATIVE] CORS: Nuclei doesn't report any Findings for OWASP JuiceShop `Access-Control-Allow-Origin: *`

[J12934]

Template IDs or paths

OWASP JuiceShop Project has a completly open `Access-Control-Allow-Origin: *` header.

Nuclei template doesn't raise any related findings for it.

- http/vulnerabilities/generic/cors-misconfig.yaml

Environment

- OS: macos
- Nuclei: v3.4.10 templates v10.2.9
- Go: -

Steps To Reproduce

1. docker run -p 3000:3000 bkimminich/juice-shop:latest
2. nuclei -u http://localhost:3000

Relevant dumped responses

Anything else?

semi sure that this is a regression and used to get reported.

[J12934]

ah ok i guess its because juice shop doesn't come with a Access-Control-Allow-Credentials: true header.
Thats ok for me then :D

[J12934]

alternative that would also make sense to me:

Access-Control-Allow-Origin: * by itself => info severity
Access-Control-Allow-Origin: * + Access-Control-Allow-Credentials: true => high severity