CVE-2022-47717
Last Yard 22.09.8-1 is vulnerable to Cross-origin resource sharing
HTTP/2 200 OK Date: x 04:44:43 GMT Content-Type: image/svg+xml Content-Length: 15923 Server: nginx Cache-Control: max-age=315360000, public, immutable
Access-Control-Allow-Origin: *. <-----------------------
Vary: Accept-Encoding Last-Modified: Mon, 01 Aug 2022 03:29:56 GMT Etag: "62e748b4-3e33" X-Cache-Status: HIT Service-Worker-Allowed: /