diff --git a/backend/src/main/java/io/linkloud/api/global/config/CorsConfig.java b/backend/src/main/java/io/linkloud/api/global/config/CorsConfig.java
deleted file mode 100644
index 94e6c2d3..00000000
--- a/backend/src/main/java/io/linkloud/api/global/config/CorsConfig.java
+++ /dev/null
@@ -1,17 +0,0 @@
-package io.linkloud.api.global.config;
-
-import org.springframework.context.annotation.Configuration;
-import org.springframework.web.servlet.config.annotation.CorsRegistry;
-import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
-
-@Configuration
-public class CorsConfig implements WebMvcConfigurer {
-
-    @Override
-    public void addCorsMappings(CorsRegistry registry) {
-        registry.addMapping("/**")
-            .allowedOrigins("https://linkloud.io") // 허용할 도메인을 지정합니다.
-            .allowedMethods("GET", "POST", "PUT", "DELETE","PATCH")
-            .allowedHeaders("*");
-    }
-}
diff --git a/backend/src/main/java/io/linkloud/api/global/security/SecurityConfig.java b/backend/src/main/java/io/linkloud/api/global/security/SecurityConfig.java
index a03a6628..1ca1d894 100644
--- a/backend/src/main/java/io/linkloud/api/global/security/SecurityConfig.java
+++ b/backend/src/main/java/io/linkloud/api/global/security/SecurityConfig.java
@@ -29,7 +29,7 @@ public class SecurityConfig {
     @Bean
     public SecurityFilterChain configure(HttpSecurity http) throws Exception {
         return http
-            .cors()
+            .cors().configurationSource(corsConfigurationSource())
             .and()
             .csrf().disable()
             .formLogin().disable()
@@ -60,9 +60,11 @@ public SecurityFilterChain configure(HttpSecurity http) throws Exception {
     @Bean
     public CorsConfigurationSource corsConfigurationSource() {
         CorsConfiguration configuration = new CorsConfiguration();
-        configuration.setAllowedOrigins(List.of("https://linkloud.io"));
-        configuration.setAllowedMethods(Arrays.asList("GET", "POST", "PUT", "DELETE", "PATCH"));
-        configuration.setAllowedHeaders(List.of("*"));
+        configuration.addAllowedOrigin("https://linkloud.io");
+        configuration.addAllowedOrigin("http://localhost:5173");
+
+        configuration.addAllowedMethod("*"); // 모든 메소드 허용.
+        configuration.addAllowedHeader("*");
         configuration.setAllowCredentials(true);
         UrlBasedCorsConfigurationSource source = new UrlBasedCorsConfigurationSource();
         source.registerCorsConfiguration("/**", configuration);