CVE-2025-7801 | BossSoft CRM 6.0 HNDCBas_customPrmSearchDtl.jsp cstid sql injection

Inserito da Angelo Barbosa | Lug 18, 2025 | CVE

A vulnerability has been found in BossSoft CRM 6.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /crm/module/HNDCBas_customPrmSearchDtl.jsp. The manipulation of the argument cstid leads to sql injection.

This vulnerability is known as CVE-2025-7801. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-7801 | BossSoft CRM 6.0 HNDCBas_customPrmSearchDtl.jsp cstid sql injection

Post correlati

CVE-2023-52722 | Artifex Ghostscript up to 10.01.0 SAFER Mode psi/zmisc1.c Privilege Escalation

CVE-2024-10699 | code-projects Wazifa System 1.0 logincontrol.php username sql injection

CVE-2024-36934 | Linux Kernel up to 6.8.9 bna memdup_user_nul null termination

CVE-2023-50249 | Sentry Astro prior 7.87.0 redos