Security Advisory

CVE-2025-59743

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-02 14:13:38

Last updated 2025-10-02 15:47:09

Assigner INCIBE

State PUBLISHED

Description

SQL injection vulnerability in AndSofts e-TMS v25.03. This vulnerability could allow an attacker to retrieve, create, update, and delete databases by sending a POST request. The relationship between parameter and assigned identifier is a SessionID cookie in /inc/connect/CONNECTION.ASP.

← Browse all CVEs View on cve.org ↗