CORS Misconfiguration — Backend Accepts any Origin (High Priority)

[vinaaaaay]

Component: Backend (backend/src/index.js)

Type: Security Vulnerability

The backend CORS configuration currently allows any website to make authenticated requests by using:

origin: true
credentials: true

This effectively trusts all origins and permits browsers to send cookies or auth tokens to the backend from malicious websites.

This becomes a CORS-based CSRF attack surface, allowing an attacker to perform privileged actions on behalf of an authenticated user or admin.