Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL Injection is present on the hfInventoryDistFormID parameter in the /PSP/appNET/Store/CartV12.aspx/GetUnitPrice endpoint in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.69). Unsanitized user input is incorporated directly into SQL queries without proper parameterization or escaping. This vulnerability allows remote attackers to execute arbitrary SQL commands
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
edu Business Solutions Print Shop Pro WebDesk 安全漏洞
Vulnerability Description
edu Business Solutions Print Shop Pro WebDesk是美国edu Business Solutions公司的一个打印订单管理系统。 edu Business Solutions Print Shop Pro WebDesk 18.34版本存在安全漏洞,该漏洞源于文件/PSP/appNET/Store/CartV12.aspx/GetUnitPrice中参数hfInventoryDistFormID的错误操作,可能导致SQL注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A