module
Selenium chrome RCE
| Disclosed |
|---|
| Apr 18, 2022 |
Disclosed
Apr 18, 2022
Description
Selenium Server (Grid) before 4.0.0-alpha-7 allows CSRF because it permits non-JSON content types
such as application/x-www-form-urlencoded, multipart/form-data, and text/plain.
such as application/x-www-form-urlencoded, multipart/form-data, and text/plain.
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.