{“lastseen”:””,”description”:”SQL Injection is present on the hfInventoryDistFormID parameter in the \/PSP\/appNET\/Store\/CartV12.aspx\/GetUnitPrice endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34. Unsanitized user input is incorporated directly into SQL queries without proper parameterization or escaping. This vulnerability allows remote attackers to execute arbitrary SQL commands”,”published”:”2026-01-08T00:00:00.000Z”,”modified”:”2026-01-08T19:44:35.115Z”,”type”:”cve”,”title”:”CVE-2025-61548″,”source”:”mitre”,”references”:”https:\/\/github.com\/chndlrx\/vulnerability-disclosures\/tree\/main\/CVE-2025-61548″,”id”:”CVE-2025-61548″,”bulletinFamily”:””,”cwe”:[“CWE-89″],”cvelist”:null,”sourceData”:”n\/a n\/a n\/a”,”sourceHref”:””,”cvss”:{“score”:9.8,”severity”:”CRITICAL”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Print Shop Pro WebDesk”,”version”:”18.34″,”vendor”:”edu Business Solutions”,”ai_description”:”SQL Injection vulnerability in Print Shop Pro WebDesk due to unsanitized user input in SQL queries”,”ai_severity”:”Critical”,”ai_vendor”:”edu Business Solutions”,”ai_product”:”Print Shop Pro WebDesk”,”ai_version”:”18.34″,”ai_score”:9.8}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”SQL Injection is present on the hfInventoryDistFormID parameter in the \/PSP\/appNET\/Store\/CartV12.aspx\/GetUnitPrice endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34. Unsanitized user input…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[9,6,8,35,12,13,7,11,5],"class_list":["post-34766","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-critical","tag-cve","tag-cvss","tag-cvss-98","tag-exploit","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n