High severity7.2NVD Advisory· Published Dec 24, 2025· Updated Apr 15, 2026
CVE-2018-25131
CVE-2018-25131
Description
Leica Geosystems GR10/GR25/GR30/GR50 GNSS 4.30.063 contains a stored cross-site scripting vulnerability in the configuration file upload functionality. Attackers can upload a malicious HTML file to that executes arbitrary JavaScript in a user's browser session when viewed.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =4.30.063
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.