CVE-2020-15660 – Missing checks on Content-Type headers in geckodriver before 0.27.0 could lead to a CSRF v …

20 July 2021

Vuln ID: CVE-2020-15660

Published: 2021-07-20 12:15:07Z

Description: Missing checks on Content-Type headers in geckodriver before 0.27.0 could lead to a CSRF vulnerability, that might, when paired with a specifically prepared request, lead to remote code execution.

Source: NVD.NIST.GOV

Date:

20 July 2021

Categorie(s):

NVD

Tag(s):

NVD

Fortinet named a Challenger in the 2024 Gartner® Magic Quadrant™ for Security Service Edge20 April 2024
AI-Controlled Fighter Jets Are Dogfighting With Human Pilots Now20 April 2024
Phishing Scams in the Gaming Community20 April 2024
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks20 April 2024
Palo Alto Networks Discloses More Details on Critical PAN-OS Flaw Under Attack20 April 2024