Unrated severityNVD Advisory· Published Jan 8, 2026· Updated Feb 10, 2026
CVE-2025-61550
CVE-2025-61550
Description
Cross-Site Scripting (XSS) is present on the ctl00_Content01_fieldValue parameters on the /psp/appNet/TemplateOrder/TemplatePreview.aspx endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.69). User-supplied input is stored and later rendered in HTML pages without proper output encoding or sanitization. This allows attackers to persistently inject arbitrary JavaScript that executes in the context of other users' sessions
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <=18.34
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.