제출 #616840: BossSoft CRM V6.0 SQL Injection정보

제목BossSoft CRM V6.0 SQL Injection
설명During a security review of BossSoft V6.0, a critical SQL injection vulnerability was discovered in the file "/crm/module/HNDCBas_customPrmSearchDtl.jsp". The "cstid" parameter is vulnerable to SQL injection, enabling attackers to retrieve data or execute commands without authentication.
원천⚠️ https://github.com/cc2024k/CVE/issues/1
사용자
 cc2024k (UID 87907)
제출2025. 07. 16. AM 07:24 (9 개월 ago)
모더레이션2025. 07. 18. AM 10:57 (2 days later)
상태수락
VulDB 항목316867 [BossSoft CRM 6.0 HNDCBas_customPrmSearchDtl.jsp cstid SQL 주입]
포인트들18

이전개요다음

Interested in the pricing of exploits?

See the underground prices here!