CVE-2020-23452

A cross-site scripting (XSS) vulnerability in Selenium Grid v3.141.59 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the hub parameter under the /grid/console page. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt