Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 Stored XSS via Config Upload
Vulnerability Description
Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 contains a stored cross-site scripting vulnerability in the configuration file upload functionality. Attackers can upload a malicious HTML file to that executes arbitrary JavaScript in a user's browser session when viewed.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Leica Geosystems GNSS 安全漏洞
Vulnerability Description
Leica Geosystems GNSS是德国徕卡(Leica)公司的一系列测绘设备。 Leica Geosystems GNSS 4.30.063版本存在安全漏洞,该漏洞源于配置文件上传功能存在存储型跨站脚本,可能导致执行任意JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A