Lucene search
K

5 matches found

Packet Storm
Packet Storm
added 2026/05/14 12:0 a.m.71 views

📄 GestioIP 3.5.7 Remote Command Execution

This Metasploit module exploits a command execution via file upload. If GestioIP is configured to use no authentication for admin account, no password is required to exploit the vulnerability. Otherwise, an authenticated user with admin right on the web site is required to exploit. This module...

9.8CVSS5.9AI score0.45109EPSS
Exploits5
Exploit DB
Exploit DB
added 2025/04/14 12:0 a.m.260 views

GestioIP 3.5.7 - Remote Command Execution (RCE)

Exploit Title: GestioIP 3.5.7 - Remote Command Execution RCE Exploit Author: m4xth0r Maximiliano Belino Author website: https://maxibelino.github.io/ Author email max.cybersecurity at belino.com GitHub disclosure link: https://github.com/maxibelino/CVEs/tree/main/CVE-2024-48760 Date: 2025-01-13...

9.8CVSS7.1AI score0.45109EPSS
Exploits5
OSV
OSV
added 2025/01/14 10:15 p.m.4 views

CVE-2024-48760

An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious perlcmd.cgi file that overwrites the original upload.cgi file, enabling remote command execution...

9.8CVSS6.1AI score0.45109EPSS
Exploits5References3
NVD
NVD
added 2025/01/14 10:15 p.m.15 views

CVE-2024-48760

An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious perlcmd.cgi file that overwrites the original upload.cgi file, enabling remote command execution...

9.8CVSS0.45109EPSS
Exploits5References3
Vulnrichment
Vulnrichment
added 2025/01/14 12:0 a.m.8 views

CVE-2024-48760

An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file upload function. The attacker can upload a malicious perlcmd.cgi file that overwrites the original upload.cgi file, enabling remote command execution...

9.8AI score0.45109EPSS
Exploits5References3
Rows per page
Query Builder