Selenium arbitrary file read

If there is an open selenium web driver, a remote attacker can send requests to the victims browser. In certain cases this can be used to access to the remote file system. Module Options msf use auxiliary/gather/seleniumfileread msf auxiliaryseleniumfileread show actions ...actions... msf...

Selenium Firefox Remote Code Execution Exploit

Selenium Server Grid versions 4.27.0 and below allows cross site request forgery because it permits non-JSON content types such as application/x-www-form-urlencoded, multipart/form-data, and text/plain and this issue in turn allows for an attacker to achieve remote code execution. This module...

Selenium Chrome Remote Code Execution Exploit

Selenium Server Grid versions prior to 4.0.0-alpha-7 allows cross site request forgery because it permits non-JSON content types such as application/x-www-form-urlencoded, multipart/form-data, and text/plain and this issue in turn allows for an attacker to achieve remote code execution. This modu...

Selenium chrome RCE

Selenium Server Grid before 4.0.0-alpha-7 allows CSRF because it permits non-JSON content types such as application/x-www-form-urlencoded, multipart/form-data, and text/plain. Module Options msf use exploit/linux/http/seleniumgreedchromercecve202228108 msf exploitseleniumgreedchromercecve20222810...

Malicious code in selenium-plugin (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6e002fd5736f780c2fc01668d4e37d008d211fa2547b96cb960b11edd5b87d64 During installation or importing, the package downloads a small executable and register autostart of its. While it's hard to get the full activity of the...

MAL-2025-982 Malicious code in selenium-plugin (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6e002fd5736f780c2fc01668d4e37d008d211fa2547b96cb960b11edd5b87d64 During installation or importing, the package downloads a small executable and register autostart of its. While it's hard to get the full activity of the...

Exposed Selenium Grid Servers Targeted for Crypto Mining and Proxyjacking

Internet-exposed Selenium Grid instances are being targeted by bad actors for illicit cryptocurrency mining and proxyjacking campaigns. "Selenium Grid is a server that facilitates running test cases in parallel across different browsers and versions," Cado Security researchers Tara Gould and Nate...

Ongoing Cyberattack Targets Exposed Selenium Grid Services for Crypto Mining

Cybersecurity researchers are sounding the alarm over an ongoing campaign that's leveraging internet-exposed Selenium Grid services for illicit cryptocurrency mining. Cloud security firm Wiz is tracking the activity under the name SeleniumGreed. The campaign, which is targeting older versions of...

SeleniumGreed: Threat actors exploit exposed Selenium Grid services for Cryptomining

Wiz researchers discover ongoing threat to popular testing framework...

MAL-2024-7022 Malicious code in selenium-spider (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in selemnium (PyPI)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-5978 Malicious code in seleiumm (PyPI)

--- -= Per source details. Do not edit below this line.=-...

CSZ CMS Version 1.3.0 - Authenticated Remote Command Execution Exploit

Exploit Title: CSZ CMS Version 1.3.0 Remote Command Execution Exploit Author: tmrswrr Vendor Homepage: https://www.cszcms.com/ Software Link: https://www.cszcms.com/link/3https://sourceforge.net/projects/cszcms/files/latest/download Version: Version 1.3.0 Tested on:...

CSZ CMS Version 1.3.0 - Authenticated Remote Command Execution

Exploit Title: CSZ CMS Version 1.3.0 Remote Command Execution Date: 17/11/2023 Exploit Author: tmrswrr Vendor Homepage: https://www.cszcms.com/ Software Link: https://www.cszcms.com/link/3https://sourceforge.net/projects/cszcms/files/latest/download Version: Version 1.3.0 Tested on:...

CSZ CMS 1.3.0 Remote Command Execution

Exploit Title: CSZ CMS Version 1.3.0 Remote Command Execution Date: 17/11/2023 Exploit Author: tmrswrr Vendor Homepage: https://www.cszcms.com/ Software Link: https://www.cszcms.com/link/3https://sourceforge.net/projects/cszcms/files/latest/download Version: Version 1.3.0 Tested on:...

Code injection

fastbots is a library for fast bot and scraper development using selenium and the Page Object Model POM design. Prior to version 0.1.5, an attacker could modify the locators.ini locator file with python code that without proper validation it's executed and it could lead to rce. The vulnerability ...

CVE-2023-48699 fastbots Eval Injection vulnerability

fastbots is a library for fast bot and scraper development using selenium and the Page Object Model POM design. Prior to version 0.1.5, an attacker could modify the locators.ini locator file with python code that without proper validation it's executed and it could lead to rce. The vulnerability ...

CVE-2023-5590

A null pointer dereference flaw was found in Selenium IEDriver. This issue causes the driver to crash when selenium gets the cookies from an attacker controlled page, which could leave the application unavailable. Mitigation No mitigation is currently known for the IE Driver. If possible, opt for...

NULL Pointer Dereference

Overview Selenium.WebDriver is a .NET bindings for the Selenium WebDriver API Affected versions of this package are vulnerable to NULL Pointer Dereference due to an insufficient check on CookieWndProc function. An attacker can cause the application to crash by sending specially crafted data that...

3b-bot (>=1.0.0b0 <=1.0.0b3), 8a-scraper (>=0.0.2 <=0.0.4) +526 more potentially affected by CVE-2023-5590 via selenium (>=2.42.1 <=4.13.0)

selenium PYPI version =2.42.1, =1.0.0b0, =0.0.2, =0.0.5, =1.0.2, =1.0.6, =0.1.7, =0.0.11, =0.1.0, =0.0.1, =2.0.0, =0.2.0, =0.4.0, =0.2.0, =2.1.3 and more Source cves: CVE-2023-5590 Source advisory: OSV:PYSEC-2023-206...