CVE-2025-10707 | JeecgBoot up to 3.8.2 sendMsg improper authorization

A vulnerability described as critical has been identified in JeecgBoot up to 3.8.2. Affected is an unknown function of the file /message/sysMessageTemplate/sendMsg. Executing manipulation can lead to improper authorization.

The identification of this vulnerability is CVE-2025-10707. The attack may be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More