VYPR
Unrated severityNVD Advisory· Published Oct 2, 2025· Updated Oct 2, 2025

Multiple vulnerabilities in AndSoft's e-TMS

CVE-2025-59749

Description

Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l' parameter in '/clt/TRACK_REQUEST.ASP'.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • AndSoft/e-TMSllm-fuzzy2 versions
    =25.03+ 1 more
    • (no CPE)range: =25.03
    • (no CPE)range: v25.03 version

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2025-59749 · VYPR