CVE-2025-59743 | AndSoft e-TMS 25.03 POST Request CONNECTION.ASP SessionID sql injection

Inserito da Angelo Barbosa | Ott 2, 2025 | CVE

A vulnerability identified as critical has been detected in AndSoft e-TMS 25.03. Affected by this vulnerability is an unknown functionality of the file /inc/connect/CONNECTION.ASP of the component POST Request Handler. This manipulation of the argument SessionID causes sql injection.

This vulnerability is registered as CVE-2025-59743. Remote exploitation of the attack is possible. No exploit is available.

CVE-2025-59743 | AndSoft e-TMS 25.03 POST Request CONNECTION.ASP SessionID sql injection

Post correlati

CVE-2024-7443 | Vivotek IB8367A VVTK-0100b upload_file.cgi getenv QUERY_STRING command injection

CVE-2025-30663 | Zoom Workplace Desktop App up to 6.3.x toctou

CVE-2024-32088 | SeedProd Coming Soon Page, Under Construction & Maintenance Mode Plugin cross-site request forgery

CVE-2023-49089 | Umbraco CMS up to 8.18.9/10.8.0/12.2.x path traversal (GHSA-6324-52pr-h4p5)