CNNVD-202601-1434 Information

Jan 08, 2026 cve

CNNVD ID

CNNVD-202601-1434

CVE-2025-61548

  • CNNVD Published: 2026-01-08

Description (Chinese)

edu Business Solutions Print Shop Pro WebDesk是美国edu Business Solutions公司的一个打印订单管理系统。 edu Business Solutions Print Shop Pro WebDesk 18.34版本存在安全漏洞,该漏洞源于文件/PSP/appNET/Store/CartV12.aspx/GetUnitPrice中参数hfInventoryDistFormID的错误操作,可能导致SQL注入攻击。

Description (English)

edu Business Solutions Print Shot Pro WebDesk is a print order management system for edu Business Solutions in the United States. There is a security loophole in version 18.34 of edu Business Solutions Prince Shop Pro WebDesk, which stems from the error of the parameter hfInventoryDistFormID in document/PSPSP/appNET/Store/CartV12.aspx/GetUnitPrice, which could lead to an SQL injection attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

edu Business Solutions

Published

2026-01-08

Last Modified

2026-02-24

References

https://github.com/chndlrx/vulnerability-disclosures/tree/main/CVE-2025-61548 https://access.redhat.com/security/cve/cve-2025-61548

Share on: