AndSoft e-TMS Cross-Site Scripting Vulnerability (CNVD-2025-23556)

AndSoft e-TMS is a logistics management software from AndSoft Spain. AndSoft e-TMS suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameters l, demo, demo2, TNTLOGIN, UO, and SuppConn in the file...

Zyxel PMG Security Breach

Zyxel PMG is a series of dual-band wireless ONT home gateway units from China's Hopkins Zyxel . A security vulnerability exists in Zyxel PMG version v.PMG2005-T20B, which originates from a vulnerability that could allow a remote attacker to cause a denial of service via a crafted script via the u...

Microstrategy Web Cross-Site Scripting Vulnerability (CNVD-2018-23268)

MicroStrategy Web is a highly interactive, easy-to-use application for report analysis and continuous business monitoring. A cross-site scripting vulnerability exists in Microstrategy Web 7. The vulnerability stems from Microstrategy Web failing to adequately encode user-controlled input. An...

Login Authentication Bypass Vulnerability in ZYCHCMS V06 /admin/login.asp Page

ZYCHCMS is an enterprise website management system. A login authentication bypass vulnerability exists in the /admin/login.asp page in ZYCHCMS V06. It allows an attacker to log in to the system backend and gain administrator privileges...

PT-2005-2753 · Zongg · Zongg

Name of the Vulnerable Software and Affected Versions: ZonGG version 1.2 Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the password parameter in the "ad/login.asp" endpoint. Recommendations: For ZonGG version 1.2, avoid using th...