Andsoft E-Tms vulnerabilities
40 known vulnerabilities affecting andsoft/e-tms.
Total CVEs
40
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL9HIGH2MEDIUM29
Vulnerabilities
Page 2 of 2
CVE-2025-59765P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59765 [MEDIUM] CWE-79 CVE-2025-59765: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_LF.ASP'.
nvd
CVE-2025-59761P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59761 [MEDIUM] CWE-79 CVE-2025-59761: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_DLG.ASP'.
nvd
CVE-2025-59762P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59762 [MEDIUM] CWE-79 CVE-2025-59762: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_DLG.ASP'.
nvd
CVE-2025-59764P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59764 [MEDIUM] CWE-79 CVE-2025-59764: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_FCC.ASP'.
nvd
CVE-2025-59766P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59766 [MEDIUM] CWE-79 CVE-2025-59766: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_LT.ASP'.
nvd
CVE-2025-59750P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59750 [MEDIUM] CWE-79 CVE-2025-59750: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM.ASP'.
nvd
CVE-2025-59757P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59757 [MEDIUM] CWE-79 CVE-2025-59757: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_CATOLD.ASP'.
nvd
CVE-2025-59759P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59759 [MEDIUM] CWE-79 CVE-2025-59759: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_DELCROIX.ASP'.
nvd
CVE-2025-59753P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59753 [MEDIUM] CWE-79 CVE-2025-59753: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_BET.ASP'.
nvd
CVE-2025-59772P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59772 [MEDIUM] CWE-79 CVE-2025-59772: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_SIL.ASP'.
nvd
CVE-2025-59758P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59758 [MEDIUM] CWE-79 CVE-2025-59758: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_CYLOG.ASP'.
nvd
CVE-2025-59773P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59773 [MEDIUM] CWE-79 CVE-2025-59773: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_TP.ASP'.
nvd
CVE-2025-59755P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59755 [MEDIUM] CWE-79 CVE-2025-59755: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_CAT.ASP'.
nvd
CVE-2025-59751P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59751 [MEDIUM] CWE-79 CVE-2025-59751: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_DJO.ASP'.
nvd
CVE-2025-59768P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59768 [MEDIUM] CWE-79 CVE-2025-59768: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_MNG.ASP'.
nvd
CVE-2025-59752P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59752 [MEDIUM] CWE-79 CVE-2025-59752: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_LXA.ASP'.
nvd
CVE-2025-59771P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59771 [MEDIUM] CWE-79 CVE-2025-59771: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_MRK.ASP'.
nvd
CVE-2025-59767P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59767 [MEDIUM] CWE-79 CVE-2025-59767: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_LVE.ASP'.
nvd
CVE-2025-59760P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59760 [MEDIUM] CWE-79 CVE-2025-59760: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_DHL.ASP'.
nvd
CVE-2025-59769P4MEDIUMCVSS 6.1v25.03vv25.03 version2025-10-02
CVE-2025-59769 [MEDIUM] CWE-79 CVE-2025-59769: Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability all
Cross-site scripting (XSS) vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and SuppConn' parameters in '/clt/LOGINFRM_MOL.ASP'.
nvd
← Previous2 / 2