CVE-2025-7801 | BossSoft CRM 6.0 HNDCBas_customPrmSearchDtl.jsp cstid sql injection

July 18, 2025 Yanac

A vulnerability has been found in BossSoft CRM 6.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /crm/module/HNDCBas_customPrmSearchDtl.jsp. The manipulation of the argument cstid leads to sql injection.

This vulnerability is known as CVE-2025-7801. The attack can be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More