CVE-2024-50857

MEDIUM NUCLEI

GestioIP 3.5.7 - Cross-Site Scripting via ip_do_job Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-50857. PoCs published by Maximiliano Belino. A Nuclei detection template is also available.

AI-analyzed exploit summary The exploit demonstrates an authenticated XSS vulnerability in GestioIP 3.5.7 via the 'host_id' and 'stored_config' parameters in the 'ip_do_job.cgi' endpoint. It requires specific user group permissions and can lead to data exfiltration or CSRF attacks.

Description

The ip_do_job request in GestioIP v3.5.7 is vulnerable to Cross-Site Scripting (XSS). It allows data exfiltration and enables CSRF attacks. The vulnerability requires specific user permissions within the application to exploit successfully.

Exploits (1)

exploitdb WORKING POC

by Maximiliano Belino · textremotemultiple

https://www.exploit-db.com/exploits/52203

View Code ZIP pw:eip

The exploit demonstrates an authenticated XSS vulnerability in GestioIP 3.5.7 via the 'host_id' and 'stored_config' parameters in the 'ip_do_job.cgi' endpoint. It requires specific user group permissions and can lead to data exfiltration or CSRF attacks.

Classification

Working Poc 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: GestioIP v3.5.7

Auth required

Prerequisites: User must be part of a 'User Group' with specific permissions: read_device_config_perm, write_device_config_perm, and administrative_cm_perm

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

GestioIP - Reflected Cross-Site Scripting

MEDIUMVERIFIEDby Gaurang

References (3)

Core 3

Core References

Product

http://www.gestioip.net

Exploit, Third Party Advisory

https://github.com/maxibelino/CVEs/tree/main/CVE-2024-50857

View Exploit ZIP pw:eip

Product

https://github.com/muebel/gestioip-docker-compose

Scores

CVSS v3 4.8

EPSS 0.0009

EPSS Percentile 26.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-79

Status published

Products (1)

gestioip/gestioip 3.5.7

Published Jan 14, 2025

Tracked Since Feb 18, 2026