Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Selenium Grid Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#panel#unauth#selenium
Description

What is the "Selenium Grid Panel - Detect" module?

The "Selenium Grid Panel - Detect" module is designed to detect the presence of the Selenium Grid panel. Selenium Grid is a tool used for running multiple Selenium tests on different machines in parallel. This module focuses on identifying misconfigurations or vulnerabilities related to the Selenium Grid panel.

This module has an informative severity level, which means it provides valuable information but does not pose an immediate threat.

Impact

The impact of this module depends on the specific misconfiguration or vulnerability detected. It could potentially expose sensitive information or allow unauthorized access to the Selenium Grid panel.

How the module works?

The "Selenium Grid Panel - Detect" module works by sending an HTTP GET request to the "/ui/index.html" path of the target. It then applies matching conditions to determine if the Selenium Grid panel is present.

The matching conditions for this module are:

- The response body must contain the HTML tag "<title>Selenium Grid</title>". - The response status code must be 200 (OK).

If both conditions are met, the module considers the Selenium Grid panel to be detected.

By using this module, you can identify potential misconfigurations or vulnerabilities in the Selenium Grid panel and take appropriate actions to secure it.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/ui/index.html
Matching conditions
word: <title>Selenium Grid</title>and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability