Lucene search
GoogleOSV:CVE-2022-28108HistoryApr 19, 2022 - 3:15 a.m.
CVE-2022-28108
2022-04-1903:15:08
Google
osv.dev
3
selenium server
csrf
vulnerability fix
non-json content types
Selenium Server (Grid) before 4 allows CSRF because it permits non-JSON content types such as application/x-www-form-urlencoded, multipart/form-data, and text/plain.
Related
cve
cve
CVE-2022-28108
2022-04-19 03:15:08
nvd
nvd
CVE-2022-28108
2022-04-19 03:15:08
checkpoint_advisories
checkpoint_advisories
Selenium Grid Cross-Site Request Forgery (CVE-2022-28108)
2022-06-07 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-04-19 03:15:00
cvelist
cvelist
CVE-2022-28108
2022-04-19 02:55:37
cnvd
cnvd
Selenium Server Cross-Site Request Forgery Vulnerability
2022-04-21 00:00:00