There is a popular opinion: bad CORS like <Access-Control-Allow-Origin: *> is unexploitable. Browser won't send cookies in this case.
It is a delusion. You can exploit it with a Chrome cache feature!
For example:
hackerone.com/reports/761726#BugBountyTip#CyberSecurity#BugBounty
When you upload image on target, always check if website exif data is leaking any sensitive data
1. Upload image on <Target>
3. Copy&Paste image address in exif.regex.info/
4. Report if you find any sensitive data like location,IP address etc,.
#bugbountytips#BugBounty