Описание
Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 contains a stored cross-site scripting vulnerability in the configuration file upload functionality. Attackers can upload a malicious HTML file to that executes arbitrary JavaScript in a user's browser session when viewed.
EPSS
Процентиль: 9%
0.00032
Низкий
7.2 High
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 7.2
github
около 1 месяца назад
Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 contains a stored cross-site scripting vulnerability in the configuration file upload functionality. Attackers can upload a malicious HTML file to that executes arbitrary JavaScript in a user's browser session when viewed.
EPSS
Процентиль: 9%
0.00032
Низкий
7.2 High
CVSS3
Дефекты
CWE-79