Incorrect handling of CORS in ServiceWorker in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to leak cross-origin data via a crafted HTML page.Referenceshttps://crbug.com/812667https://chromereleases.googleblog.com/2018/04/stable-channel-update-for-desktop.html
