2025-10-02 14:16:32
INCIBE
PUBLISHED
Path traversal vulnerability in AndSofts e-TMS v25.03. This vulnerability allows an attacker to access files only within the web root using the “docurl” parameter in “/lib/asp/DOCSAVEASASP.ASP”.