Unrated severityNVD Advisory· Published Jul 20, 2025· Updated Jul 22, 2025

thinkgem JeeSite ServletUtils.java redirectUrl

CVE-2025-7863

Description

A vulnerability was found in thinkgem JeeSite up to 5.12.0 and classified as problematic. Affected by this issue is the function redirectUrl of the file src/main/java/com/jeesite/common/web/http/ServletUtils.java. The manipulation of the argument url leads to open redirect. The attack may be launched remotely. The name of the patch is 3d06b8d009d0267f0255acc87ea19d29d07cedc3. It is recommended to apply a patch to fix this issue.

Affected products

Jeesite/Jeesitev5
Range: 5.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/thinkgem/jeesite5/commit/3d06b8d009d0267f0255acc87ea19d29d07cedc3mitrepatch
vuldb.commitrethird-party-advisory
github.com/thinkgem/jeesite5/issues/30mitreissue-tracking
github.com/thinkgem/jeesite5/issues/30mitreissue-tracking
vuldb.commitresignaturepermissions-required
vuldb.commitrevdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000