3 matches found
EUVD-2025-32118
Malicious code in bioql PyPI...
CVE-2025-59774 Multiple vulnerabilities in AndSoft's e-TMS
Cross-site scripting XSS vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and...
CVE-2025-59763
CVE-2025-59763 describes a reflected Cross-Site Scripting (XSS) vulnerability in AndSoft e-TMS v25.03. The flaw arises from lack of proper filtering/escaping of user-supplied data in the parameters l, demo, demo2, TNTLOGIN, UO, and SuppConn within /clt/LOGINFRM_EK.ASP, enabling an attacker to cau...