Selenium Grid 4.11.0 Selenoid Backend Detection and Safe Session Validation Inspector

The provided Python script is a non-exploit reconnaissance and validation tool designed to identify Selenium Grid or Selenoid deployments exposed via HTTP APIs...

Metasploit Wrap-Up 04/17/2026

Happy Friday - Seven New Metasploit Modules We’re happy to announce that Metasploit Framework had a big week, landing seven new modules alongside various bug fixes and enhancements. This week’s highlights include RCE modules targeting AVideo, openDCIM, Selenium Grid/Selenoid, and ChurchCRM. On th...

Selenium Grid/Selenoid Unauthenticated RCE

Selenium Grid and Selenoid expose a WebDriver API that allows creating browser sessions with arbitrary capabilities. When deployed without authentication the default for both, an attacker can achieve remote code execution through two browser-specific techniques: For Chrome, the goog:chromeOptions...

📄 Selenium Grid/Selenoid Unauthenticated Remote Code Execution

Selenium Grid and Selenoid expose a WebDriver API that allows creating browser sessions with arbitrary capabilities. When deployed without authentication the default for both, an attacker can achieve remote code execution through two browser-specific techniques: For Chrome, the goog:chromeOptions...

DSpace 9.2 REST API Automated Document Discovery and Download

This is a framework for collecting data from DSpace systems. Built using Selenium, it is designed to automatically discover and download documents from web repositories and public portals...

📄 Selenium Server (Grid) 4.27.0 Code Injection

Proof of concept exploit for Selenium Server Grid versions 4.27.0 and below that exploits firefoxprofile to force the browser to run bash commands. ============================================================================================================================================= | Title...

Fedora 45 : selenium-manager (2026-a92ff0085d)

The remote Fedora 45 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-a92ff0085d advisory. Automatic update for selenium-manager-4.34.0-6.fc45. Changelog Tue Feb 10 2026 tjuhasz - 4.34.0-6 - Rebuild for CVE-2026-25727 rhbz2438154 Tenable has...

Malicious code in selenium-integration (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 50120169fb4cd982eb19b5dee69b1aa881d250d6bab46aaadb2746b92f0ec158 When importing the module, code downloads and executes a highly obfuscated remote script. --- Category: MALICIOUS - The campaign has clearly malicious intent,...

MAL-2026-506 Malicious code in selenium-integration (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 50120169fb4cd982eb19b5dee69b1aa881d250d6bab46aaadb2746b92f0ec158 When importing the module, code downloads and executes a highly obfuscated remote script. --- Category: MALICIOUS - The campaign has clearly malicious intent,...

EUVD-2026-4643

Malicious code in selenium-integration PyPI...

Malicious code in selenium-session (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ecd0e6dc81b318ff25ac39f8955edd9409fd4ffec088409a60da0570a050691 The package selenium-session was found to contain malicious code. Source: google-open-source-security...

MAL-2025-191422 Malicious code in selenium-session-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c213ecffb94ad5db9053c2dcf20681d6fe3a5baa0b8ed42d87e01c7ef930a704 The package selenium-session-client was found to contain malicious code. Source: google-open-source-security...

MAL-2025-191421 Malicious code in selenium-session (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9ecd0e6dc81b318ff25ac39f8955edd9409fd4ffec088409a60da0570a050691 The package selenium-session was found to contain malicious code. Source: google-open-source-security...

EUVD-2025-199357

Malicious code in selenium-session npm...

EUVD-2025-199356

Malicious code in selenium-session-client npm...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

Malicious code in rimraf-betelgeuse-baryon-selenium (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a3aec160d4f2115fef5d041bbd82fe690b367aa8d2bae4e68d3c473c1e8d806a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188600 Malicious code in pegasus-nightwatch-nconf-selenium (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e249e84533ba3f5ff5d0be0c07b16886f7c224e9148d494ab0f395877026b2ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186242 Malicious code in commitizen-playwright-selenium-publish (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c754c3bfd1ff8786771ed58cb3d42e85de78b7b2210d6d9979d54019bdb9ae60 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...