GestioIP Cross-Site Request Forgery Vulnerability

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in GestioIP version 3.5.7. This issue allows an attacker to perform actions on behalf of an administrator by sending them a malicious link. When the admin clicks the link, the attacker's actions are executed, potentially leading to unauthorized data modification, deletion, or exfiltration.

Impact

Exploitation of this vulnerability could result in unauthorized actions being performed on behalf of an administrator, including privilege escalation or deletion of critical data such as network information.

Reproduction

To reproduce this vulnerability, an attacker must host a malicious HTML file that exploits the CSRF flaw. This file should be designed to perform an action through the admin's browser, such as modifying user information or resetting the application's database. Once the file is hosted, the attacker can send the link to an administrator. If the admin clicks the link while logged into GestioIP, the malicious action will be carried out automatically.