Jon Stratton

2 exploits Active since Apr 2022
CVE-2022-28108 METASPLOIT HIGH ruby WORKING POC
Selenium Grid < 4.0.0 - CSRF
Selenium Server (Grid) before 4 allows CSRF because it permits non-JSON content types such as application/x-www-form-urlencoded, multipart/form-data, and text/plain.
CVSS 8.8
EIP-2026-103322 EXPLOITDB ruby WORKING POC
Selenium 3.141.59 - Remote Code Execution (Firefox/geckodriver)