Security Advisory
CVE-2025-59747
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Cross-site scripting (XSS) vulnerability reflected in AndSofts e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victims browser by sending them a malicious URL. The relationship between parameter and assigned identifier is l parameter in /clt/resetPassword.asp.