From e7892407f5adbca2d90625dd5332f749501cb805 Mon Sep 17 00:00:00 2001
From: pussycat0x <65701233+pussycat0x@users.noreply.github.com>
Date: Fri, 18 Nov 2022 11:29:49 +0530
Subject: [PATCH] Add files via upload

---
 .../unauth-selenium-grid-console.yaml         | 25 +++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 misconfiguration/unauth-selenium-grid-console.yaml

diff --git a/misconfiguration/unauth-selenium-grid-console.yaml b/misconfiguration/unauth-selenium-grid-console.yaml
new file mode 100644
index 0000000000..28299e31d8
--- /dev/null
+++ b/misconfiguration/unauth-selenium-grid-console.yaml
@@ -0,0 +1,25 @@
+id: unauth-selenium-grid-console
+
+info:
+  name: Unauthenticated Selenium Grid Console
+  author: pussycat0x
+  severity: high
+  tags: misconfig,unauth
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/grid/console"
+      - "{{BaseURL}}/console"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "Grid Console"
+          - "view config"
+        condition: and
+      - type: status
+        status:
+          - 200