Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

jeecgboot — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting jeecgboot. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Jeecgboot is a low-code development platform primarily used for building enterprise applications. Historically, it has been vulnerable to multiple security issues including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation vulnerabilities. The platform's CVE history shows consistent patterns of authentication bypass flaws and insufficient input validation. Jeecgboot has faced several critical security incidents, with its most recent vulnerabilities involving unsafe deserialization and improper access controls. Despite these issues, the platform remains popular in enterprise environments due to its rapid development capabilities, though organizations should implement strict security controls when deploying it.

Found 6 results / 7Clear Filters
Top products by jeecgboot: JimuReport jeewx-boot
Critical2026-05-27
API Key 未授权泄露 · Issue #9599 · jeecgboot/JeecgBoot
CriticalGHSA-9599-jeecgboot2026-05-27
API Key 未授权泄露 · Issue #9599 · jeecgboot/JeecgBoot
High2026-05-27
/sys/comment/add缺少权限注解 · Issue #9598 · jeecgboot/JeecgBoot
High2026-05-27
/sys/comment/add缺少权限注解 · Issue #9598 · jeecgboot/JeecgBoot
High2026-05-27
`userIdentity` 提权漏洞 · Issue #9596 · jeecgboot/JeecgBoot
High2026-05-27
`userIdentity` 提权漏洞 · Issue #9596 · jeecgboot/JeecgBoot
High2026-05-27
Release v3.9.2 · jeecgboot/JeecgBoot · GitHub
High2026-05-27
`selectDepart` 跨部门/租户上下文注入 · Issue #9597 · jeecgboot/JeecgBoot
High2026-05-27
`selectDepart` 跨部门/租户上下文注入 · Issue #9597 · jeecgboot/JeecgBoot
MediumCVE-2024-XXXX2026-05-10
CVE_APPLY/V-009_mLogin_Captcha_Bypass at main · xpp3901/CVE_APPLY · GitHub
CriticalCVE-2024-95712026-05-08
CVE Submission — JeecgBoot SQL Injection via `_tableFilterSql` Parameter (UNION-based) · Issue #9571 · jeecgboot/JeecgBo
Unknown2026-05-02
[Security] Direct SSRF via uploadImgByHttp Endpoint in jeecgboot_JeecgBoot · Issue #9555 · jeecgboot/JeecgBoot
High2026-05-02
[Security] Direct SSRF via uploadImgByHttp Endpoint in jeecgboot_JeecgBoot · Issue #9555 · jeecgboot/JeecgBoot
High2026-05-02
[Security] Second-Order SSRF in jeecgboot_JeecgBoot · Issue #9553 · jeecgboot/JeecgBoot
High2026-05-02
[Security] Second-Order SSRF in jeecgboot_JeecgBoot · Issue #9553 · jeecgboot/JeecgBoot
Critical2026-05-02
[Security] Second-Order SSRF via OpenApi Service in jeecgboot_JeecgBoot · Issue #9554 · jeecgboot/JeecgBoot
High2026-05-02
[Security] Second-Order SSRF via OpenApi Service in jeecgboot_JeecgBoot · Issue #9554 · jeecgboot/JeecgBoot
Critical2026-05-02
[Security] Remote Code Execution via Unsafe Reflection in jeecgboot_JeecgBoot · Issue #9552 · jeecgboot/JeecgBoot
Critical2026-05-02
[Security] Remote Code Execution via Unsafe Reflection in jeecgboot_JeecgBoot · Issue #9552 · jeecgboot/JeecgBoot
High2026-05-01
Stored XSS Vulnerability in msgContent Parameter of /a/msg/msgInner/save Endpoint · Issue #528 · thinkgem/jeesite

Showing up to 20 recent security advisories. View all →

This page lists every published CVE security advisory associated with jeecgboot. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.