oss-sec mailing list archives
Re: Browser-mediated attacks on WebDriver servers
From: Gabriel Corona <gabriel.corona () enst-bretagne fr>
Date: Sat, 16 Apr 2022 00:12:30 +0200
Selenium server/Grid CSRF vulnerability;
This is CVE-2022-28108.
Selenium server/Grid DNS-rebinding vulnerability.
This is CVE-2022-28109. Gabriel
Current thread:
- Re: Browser-mediated attacks on WebDriver servers Gabriel Corona (Apr 14)
- <Possible follow-ups>
- Re: Browser-mediated attacks on WebDriver servers Gabriel Corona (Apr 16)