Allow CORS: Access-Control-Allow-Origin

Allow CORS: Access-Control-Allow-Origin

Easily add (Access-Control-Allow-Origin: *) rule to the response header.

Allow CORS: Access-Control-Allow-Origin promo image
What is Allow CORS: Access-Control-Allow-Origin?

Allow CORS: Access-Control-Allow-Origin is a popular Chrome extension by Muyor. This extension has 714,375 weekly active users, an average user rating of 3.37, and is most similar to CORS Unblock and Moesif Origin & CORS Changer. The latest version, 0.1.8, was updated a year ago.

Stats date:
By: Muyor
Rating: 3.37 (225)
Version: 0.1.8 (Last updated: 2022-06-24)
Creation date: 2020-03-08
Manifest version: 3
  • storage
  • webRequest
  • declarativeNetRequest
Host permissions:
  • <all_urls>
Size: 64.79K
Email: Click to see
URLs: Website
Risk impact: High risk impact
Risk likelihood: Very low risk likelihood

Other platforms

Not available on Edge
Allow CORS: Access-Control-Allow-Origin lets you easily perform cross-domain Ajax requests in web applications.

Simply activate the add-on and perform the request. CORS or Cross-Origin Resource Sharing is blocked in modern browsers by default (in JavaScript APIs). Installing this add-on will allow you to unblock this feature. Please note that, when the add-on is added to your browser, it is inactive by default (toolbar icon is grey C letter). If you want to activate the add-on, please open the toolbar popup and press the toggle button on the left side. The icon will turn to an orange C letter.

If you have a feature request or found a bug to report, please fill out the bug report form on the add-on's homepage (
User reviews
User reviews summary
These summaries are automatically generated weekly using AI based on recent user reviews. Chrome Web Store does not verify user reviews, so some user reviews may be inaccurate, spammy, or outdated.
  • Useful for developers
  • Helpful for dealing with CORS issues
  • Free
  • May break certain websites when enabled
  • Whitelist feature could be improved
  • Content-Type header in POST requests not allowed
Most mentioned
  • Works well
  • Difficult to enable at first
  • May break certain websites
  • Whitelist feature could be improved
  • Content-Type header in POST requests not allowed
View all user reviews
Risk impact

Allow CORS: Access-Control-Allow-Origin requires a number of risky permissions that can potentially harm your browser and steal your data. Exercise caution when installing this extension. Review carefully before installing. We recommend that you only install Allow CORS: Access-Control-Allow-Origin if you trust the publisher.

Risk impact measures the level of extra permissions an extension has access to. A low risk impact extension cannot do much harms, whereas a high risk impact extension can do a lot of damage like stealing your password, bypass your security settings, and access your personal data. High risk impact extensions are not necessarily malicious. However, if they do turn malicious, they can be very harmful.

Risk likelihood

Allow CORS: Access-Control-Allow-Origin has earned a good reputation and can be trusted.

Risk likelihood measures the probability that a Chrome extension may turn malicious. This is determined by the publisher and the Chrome extension reputation on Chrome Web Store, the amount of time the Chrome extension has been around, and other signals about the Chrome extension. Our algorithms are not perfect, and are subject to change as we discover new ways to detect malicious extensions. We recommend that you always exercise caution when installing a Chrome extension, especially ones with higher risk impact and/or higher risk likelihood.

Subscribe to the premium plan to see more risk analysis details
Promo video
Promo images
Allow CORS: Access-Control-Allow-Origin marquee promo image
Marquee promo image
Allow CORS: Access-Control-Allow-Origin large promo image
Large promo image
Allow CORS: Access-Control-Allow-Origin small promo image
Small promo image
Similar extensions

Here are some Chrome extensions that are similar to Allow CORS: Access-Control-Allow-Origin:

CORS Unblock CORS Unblock
Publisher: balvin.perrie
User count: 166,348
Rating: 113
No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled
Moesif Origin & CORS Changer Moesif Origin & CORS Changer
User count: 209,347
Rating: 185
This plugin allows you to send cross-domain requests. You can also override Request Origin and CORS headers.
Cross Domain - CORS Cross Domain - CORS
Publisher: Mai Tan
User count: 43,694
Rating: 54
Cross Domain will help you to deal with cross domain - CORS problem. This is tool helpful when face with cross domain issue.