Maximiliano Belino

Name of the Vulnerable Software and Affected Versions: GestioIP version 3.5.7 Description: An issue in GestioIP allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious `perlcmd.cgi` file that overwrites the original `upload.cgi` file, enabling remote command execution. Recommendations: For GestioIP version 3.5.7, as a temporary workaround, consider disabling the file upload function until a patch is available. Restrict access to the `upload.cgi` file to minimize the risk of exploitation. Avoid using the file upload feature in GestioIP until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GestioIP version 3.5.7 **Description** The `ip do job` request is vulnerable to Cross-Site Scripting (XSS), allowing data exfiltration and enabling CSRF attacks. The vulnerability requires specific user permissions within the application to exploit successfully. **Recommendations** For GestioIP version 3.5.7, consider disabling the `ip do job` request as a temporary workaround until a patch is available. Restrict access to the vulnerable request to minimize the risk of exploitation. Avoid using the `ip do job` request until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GestioIP version 3.5.7 **Description** The issue affects multiple endpoints in GestioIP, making them vulnerable to Cross-Site Request Forgery (CSRF). An attacker can execute actions via the admin's browser by hosting a malicious URL, leading to data modification, deletion, or exfiltration. **Recommendations** For GestioIP version 3.5.7, consider disabling access to the vulnerable endpoints as a temporary workaround until a patch is available. Restrict access to administrative functions to minimize the risk of exploitation. Avoid using the vulnerable endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GestioIP version 3.5.7 **Description** The issue concerns a Reflected XSS vulnerability in the `ip import acl csv` request. When a user uploads an improperly formatted file, the content may be reflected in the HTML response, allowing the attacker to execute malicious scripts or exfiltrate data. **Recommendations** For GestioIP version 3.5.7, as a temporary workaround, consider disabling the `ip import acl csv` request until a patch is available. Restrict access to file uploads to minimize the risk of exploitation. Avoid using improperly formatted files in the affected request until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GestioIP version 3.5.7 **Description** The issue concerns a Stored XSS vulnerability in the `ip mod dns key form.cgi` request. An attacker can inject malicious code into the `TSIG Key` field, which is saved in the database and triggers XSS when viewed. This enables data exfiltration and CSRF attacks. **Recommendations** For GestioIP version 3.5.7, consider disabling the `ip mod dns key form.cgi` request or restricting access to the `TSIG Key` field until a patch is available. Avoid using the `TSIG Key` field in the affected request until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.