CVE-2025-59742 | AndSoft e-TMS 25.03 POST Request TRACK_REQUESTFRMSQL.ASP USRMAIL sql injection

Inserito da Angelo Barbosa | Ott 2, 2025 | CVE

A vulnerability categorized as critical has been discovered in AndSoft e-TMS 25.03. Affected is an unknown function of the file /inc/login/TRACK_REQUESTFRMSQL.ASP of the component POST Request Handler. The manipulation of the argument USRMAIL results in sql injection.

This vulnerability is cataloged as CVE-2025-59742. The attack may be launched remotely. There is no exploit available.

CVE-2025-59742 | AndSoft e-TMS 25.03 POST Request TRACK_REQUESTFRMSQL.ASP USRMAIL sql injection

Post correlati

CVE-2023-41542 | jeecg-boot 3.5.3 jmreport/qurestSql sql injection

CVE-2024-3624 | quay mirror-registry cleartext storage in a file or on disk

CVE-2025-20197 | Cisco IOS XE up to 17.15.1w CLI improper authentication (cisco-sa-iosxe-privesc-su7scvdp)

CVE-2023-6833 | Hitachi Ops Center Administrator up to 11.0.0 log file (sec-2024-121)