What is the CVSS score of CVE-2025-61547?

CVE-2025-61547 has a CVSS 3.1 base score of 6.8 (Medium). CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N. EPSS exploitation probability: 0.0%.

Which versions of Print Shop Pro Webdesk are affected by CVE-2025-61547?

Organizations using edu Business Solutions Print Shop Pro WebDesk should be aware of notable risk from CVE-2025-61547, a cross-site request forgery vulnerability rated CVSS 6.8.

Is there a public PoC exploit available for CVE-2025-61547?

Yes, a public proof-of-concept exploit is available for CVE-2025-61547. Prioritise patching immediately. EPSS: 0.0%.

How to fix or mitigate CVE-2025-61547?

Within 30 days: Identify affected systems running edu Business Solutions Print Shop Pro WebDesk and apply vendor patches as part of regular patch cycle. Verify anti-CSRF tokens are enforced.

Print Shop Pro Webdesk CVE-2025-61547

MEDIUM

Cross-Site Request Forgery (CSRF) (CWE-352)

2026-01-08 cve@mitre.org

CSRF Print Shop Pro Webdesk

6.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

6.8 MEDIUM

AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

PoC Detected

Feb 10, 2026 - 18:16 vuln.today

Public exploit code

CVE Published

Jan 08, 2026 - 17:15 nvd

MEDIUM 6.8

DescriptionCVE.org

Cross-Site Request Forgery (CSRF) is present on all functions in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.76). The application does not implement proper CSRF tokens or other other protective measures, allowing a remote attacker to trick authenticated users into unknowingly executing unintended actions within their session. This can lead to unauthorized data modification such as credential updates.

AnalysisAI

Print Shop Pro Webdesk versions up to 18.34 is affected by cross-site request forgery (csrf) (CVSS 6.8).

Technical ContextAI

This vulnerability (CWE-352: Cross-Site Request Forgery (CSRF)) affects Print Shop Pro Webdesk. Cross-Site Request Forgery (CSRF) is present on all functions in edu Business Solutions Print Shop Pro WebDesk version 18.34 (fixed in 19.76). The application does not implement proper CSRF tokens or other other protective measures, allowing a remote attacker to trick authenticated users into unknowingly executing unintended actions within their session. This can lead to unauthorized data modification such as credential updates.

RemediationAI

Fixed in version 19.76. Restrict network access to the affected service where possible.

CVE-2025-61547 vulnerability details – vuln.today

Back

Print Shop Pro Webdesk CVE-2025-61547

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code