CVEs (6)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Edubusinesssolutions 1Print Shop Pro Webdesk May 14, 2026 Feb 20, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in edu Business Solutions Print Shop Pro WebDesk v.18.34 (fixed in 19.76) allows a remote attacker to escalate privileges via the AccessID parameter. |
1Edubusinesssolutions 1Print Shop Pro Webdesk Feb 10, 2026 Jan 8, 2026 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Cross-Site Scripting (XSS) is present on the ctl00_Content01_fieldValue parameters on the /psp/appNet/TemplateOrder/TemplatePreview.aspx endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 1...Show more |
1Edubusinesssolutions 1Print Shop Pro Webdesk Feb 10, 2026 Jan 8, 2026 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Cross-Site Scripting (XSS) is present on the LoginID parameter on the /PSP/app/web/reg/reg_display.asp endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.76). Unsanitized user input is r...Show more |
1Edubusinesssolutions 1Print Shop Pro Webdesk Feb 10, 2026 Jan 8, 2026 N/A· v4 9.8 CRITICAL· v3 N/A· v2 SQL Injection is present on the hfInventoryDistFormID parameter in the /PSP/appNET/Store/CartV12.aspx/GetUnitPrice endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.69). Unsanitized use...Show more |
1Edubusinesssolutions 1Print Shop Pro Webdesk Feb 10, 2026 Jan 8, 2026 N/A· v4 6.8 MEDIUM· v3 N/A· v2 Cross-Site Request Forgery (CSRF) is present on all functions in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.76). The application does not implement proper CSRF tokens or other other protecti...Show more |
1Edubusinesssolutions 1Print Shop Pro Webdesk Feb 10, 2026 Jan 8, 2026 N/A· v4 9.1 CRITICAL· v3 N/A· v2 There is an issue on the /PSP/appNET/Store/CartV12.aspx/GetUnitPrice endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.69) that enables remote attacker to create financial discrepancies...Show more |