Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-32146

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00181EPSS
Exploits0References2
NVD
NVD
added 2025/10/02 3:15 p.m.13 views

CVE-2025-59750

Cross-site scripting XSS vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and...

6.1CVSS0.00181EPSS
Exploits0References1
NVD
NVD
added 2025/10/02 3:15 p.m.18 views

CVE-2025-59744

Path traversal vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to access files only within the web root using the “docurl” parameter in “/lib/asp/DOCSAVEASASP.ASP”...

8.7CVSS0.00425EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/02 1:59 p.m.3 views

CVE-2025-59735 Multiple vulnerabilities in AndSoft's e-TMS

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute operating system commands on the server by sending a POST request. The relationship between parameter and assigned identifier is a 'm' parameter in '/clt/LOGINFRM.ASP'...

9.3CVSS7.7AI score0.01536EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/02 12:0 a.m.5 views

PT-2025-40361

Name of the Vulnerable Software and Affected Versions AndSoft's e-TMS version 25.03 Description An operating system command injection issue exists that allows an attacker to execute operating system commands on the server. This is achieved by sending a POST request to the /CLT/LOGINERRORFRM.ASP...

9.8CVSS7.7AI score0.01298EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/10/02 12:0 a.m.7 views

PT-2025-40371

Name of the Vulnerable Software and Affected Versions AndSoft e-TMS version 25.03 Description A cross-site scripting issue exists that allows an attacker to execute JavaScript code in a victim's browser. This is achieved by sending a malicious URL. The vulnerability is reflected in the...

6.1CVSS6.2AI score0.00181EPSS
Exploits0References4
Rows per page
Query Builder