CVE-2020-15660 – Missing checks on Content-Type headers in geckodriver before 0.27.0 could lead to a CSRF v …

Vuln ID: CVE-2020-15660

Published:  2021-07-20  12:15:07Z

Description: Missing checks on Content-Type headers in geckodriver before 0.27.0 could lead to a CSRF vulnerability, that might, when paired with a specifically prepared request, lead to remote code execution.

Source: NVD.NIST.GOV