CVE-2025-59741

AndSoft e-TMS v25.03 suffers an OS command injection that can be triggered by sending a POST request to /CLT/LOGINERRORFRM.ASP with the m parameter. Multiple connected sources (CNVD-2025-23538, NVD/CVE-2025-59741, CNNVD-202510-331, PT-2025-40361) confirm the vulnerability exists and that an attac...

PT-2025-29138 · Unknown · Easy File Sharing Ftp Server

Name of the Vulnerable Software and Affected Versions: Easy File Sharing HTTP Server version 7.2 Description: A stack-based buffer overflow vulnerability exists in the application. The flaw is triggered when a crafted POST request is sent to the /sendemail.ghp endpoint containing an overly long...