CVE-2024-50861 — MEDIUM (6.1)

Vulnerability Description

The ip_mod_dns_key_form.cgi request in GestioIP v3.5.7 is vulnerable to Stored XSS. An attacker can inject malicious code into the "TSIG Key" field, which is saved in the database and triggers XSS when viewed, enabling data exfiltration and CSRF attacks.

CVSS Score

6.1

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Gestioip	Gestioip	3.5.7

Related Weaknesses (CWE)

CWE-79

References

http://www.gestioip.netProduct
https://github.com/maxibelino/CVEs/tree/main/CVE-2024-50861ExploitThird Party Advisory
https://github.com/muebel/gestioip-docker-composeProduct
https://github.com/maxibelino/CVEs/tree/main/CVE-2024-50861ExploitThird Party Advisory

FAQ

What is CVE-2024-50861?

CVE-2024-50861 is a vulnerability with a CVSS score of 6.1 (MEDIUM). The ip_mod_dns_key_form.cgi request in GestioIP v3.5.7 is vulnerable to Stored XSS. An attacker can inject malicious code into the "TSIG Key" field, which is saved in the database and triggers XSS whe...

How severe is CVE-2024-50861?

CVE-2024-50861 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-50861?

Check the references section above for vendor advisories and patch information. Affected products include: Gestioip Gestioip.