Security Advisory

CVE-2025-59742

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-02 14:11:26

Last updated 2025-10-02 15:50:43

Assigner INCIBE

State PUBLISHED

Description

SQL injection vulnerability in AndSofts e-TMS v25.03. This vulnerability could allow an attacker to retrieve, create, update, and delete databases by sending a POST request. The relationship between parameter and assigned identifier is a USRMAIL parameter in/inc/login/TRACK_REQUESTFRMSQL.ASP.

← Browse all CVEs View on cve.org ↗