2025-01-14 00:00:00
mitre
PUBLISHED
Multiple endpoints in GestioIP v3.5.7 are vulnerable to Cross-Site Request Forgery (CSRF). An attacker can execute actions via the admins browser by hosting a malicious URL, leading to data modification, deletion, or exfiltration.