Vulnerability
2025
- CVE-2024-50861. GestioIP Vulnerability: Stored XSS Jan 13 Auth. Stored Cross-Site Scripting
- CVE-2024-50859. GestioIP Vulnerability: Reflected XSS Jan 13 Auth. Reflected Cross-Site Scripting
- CVE-2024-50858. GestioIP Vulnerability: CSRF Jan 13 Auth. Cross-Site Request Forgery
- CVE-2024-50857. GestioIP Vulnerability: XSS Jan 13 Auth. Cross-Site Scripting
- CVE-2024-48760. GestioIP Vulnerability: RCE Jan 13 Authenticated Remote Command Execution
2024
- PHP up to 7.3 Vulnerability. LFI to RCE Nov 27 LFI to RCE = Local File Inclusion to Remote Command Execution. Based on John Hammond Youtube video.