corsair_scan: test Cross-Origin Resource Sharing (CORS) misconfigurations