Every CVE whose affected-product data names Jeecg Jimureport, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2025-66913 — CVSS 9.8 (critical): JimuReport thru version 2.1.3 is vulnerable to remote code execution when processing user-controlled H2 JDBC URLs. The application passes…
CVE-2024-44893 — CVSS 9.8 (critical): An issue in the component /jeecg-boot/jmreport/dict/list of JimuReport v1.7.8 allows attacker to escalate privileges via a crafted GET…
CVE-2023-4450 — CVSS 6.3 (medium): A vulnerability was found in jeecgboot JimuReport up to 1.6.0. It has been declared as critical. Affected by this vulnerability is an…
CVE-2025-10771 — CVSS 6.3 (medium): A vulnerability was determined in jeecgboot JimuReport up to 2.1.2. Affected is an unknown function of the file /drag/onlDragDataSource/test…
CVE-2025-8963 — CVSS 6.3 (medium): A vulnerability was determined in jeecgboot JimuReport up to 2.1.1. Affected by this issue is some unknown functionality of the file…
CVE-2025-10770 — CVSS 6.3 (medium): A vulnerability was found in jeecgboot JimuReport up to 2.1.2. This impacts an unknown function of the file /drag/onlDragDataSource/testConn…
CVE-2023-6307 — CVSS 6.3 (medium): A vulnerability classified as critical was found in jeecgboot JimuReport up to 1.6.1. Affected by this vulnerability is an unknown…