CVE-2025-7785 – JeeSite Open Redirect Vulnerability

July 18, 2025

CVE ID : CVE-2025-7785

Published : July 18, 2025, 12:15 p.m. | 2 hours, 47 minutes ago

Description : A vulnerability classified as problematic was found in thinkgem JeeSite up to 5.12.0. This vulnerability affects the function sso of the file src/main/java/com/jeesite/modules/sys/web/SsoController.java. The manipulation of the argument redirect leads to open redirect. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The patch is identified as 3d06b8d009d0267f0255acc87ea19d29d07cedc3. It is recommended to apply a patch to fix this issue.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2024-13175 – Vidco Software VOC TESTER Authorization Bypass

Next Article CVE-2025-6227 – Mattermost Auth Token Interception Vulnerability

Highlights

CVE-2025-9360 – Linksys RE Series Stack-Based Buffer Overflow Vulnerability

August 23, 2025

CVE ID : CVE-2025-9360

Published : Aug. 23, 2025, 11:15 a.m. | 15 hours, 22 minutes ago

Description : A security vulnerability has been detected in Linksys RE6250, RE6300, RE6350, RE6500, RE7000 and RE9000 1.0.013.001/1.0.04.001/1.0.04.002/1.1.05.003/1.2.07.001. Impacted is the function accessControlAdd of the file /goform/accessControlAdd. Such manipulation of the argument ruleName/schedule leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 9.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Microsoft Graph CLI to be retired

The state of DevOps and AI: Not just hype

A Breeze Of Inspiration In September (2025 Wallpapers Edition)

10 Top Generative AI Development Companies for Enterprise Node.js Projects

Spec-driven development with AI: Get started with a new open source toolkit

Should the CSS light-dark() Function Support More Than Light and Dark Values?

A Behind-the-Scenes Look at the New Jitter Website

The Modern Job Hunt: Part 1

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

Enhanced Queue Job Control with Laravel’s ThrottlesExceptions failWhen() Method

August report 2025

Fake News Detection using Python Machine Learning (ML)

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

How to Open Ports in Firewall on Windows Server

Google TV Remote Not Working? 5 Quick Fixes

CVE-2025-7785 – JeeSite Open Redirect Vulnerability

CVE-2025-2414 – Akinsoft OctoCloud Authentication Bypass

CVE-2025-46810 – Traefik2 openSUSE Tumbleweed Symlink Following Root Escalation

CVE-2025-4004 – PHPGurukul COVID19 Testing Management System SQL Injection Vulnerability

CVE-2025-6856 – HDF5 Use After Free Vulnerability

CVE-2025-46655 – CodiMD AWS S3 SVG XSS Bypass

New Asus smartwatch first to measure both blood pressure and ECG

CVE-2025-9360 – Linksys RE Series Stack-Based Buffer Overflow Vulnerability

Ubisoft’s Avatar game is finally getting two features it should have had all along — better late than never

NVIDIA’s latest driver fixes some big issues with DOOM: The Dark Ages

The AI Fix #61: Replit panics, deletes $1M project; AI gets gold at Math Olympiad

CVE-2025-7785 – JeeSite Open Redirect Vulnerability

Related Posts