CVE-2025-7863

🗓️ 20 Jul 2025 02:14:06Reported by VulDBType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 15 Views🌐 WEB

Vulnerability CVE-2025-7863 in thinkgem JeeSite allows remote open redirect via redirectUrl function.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-7863	20 Jul 202506:56	–	circl
CNNVD	Thinkgem JeeSite 输入验证错误漏洞	20 Jul 202500:00	–	cnnvd
Cvelist	CVE-2025-7863 thinkgem JeeSite ServletUtils.java redirectUrl	20 Jul 202502:14	–	cvelist
EUVD	EUVD-2025-21985	3 Oct 202520:07	–	euvd
NVD	CVE-2025-7863	20 Jul 202503:15	–	nvd
Positive Technologies	PT-2025-30165	20 Jul 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-7863	22 Jul 202502:51	–	redhatcve
Vulnrichment	CVE-2025-7863 thinkgem JeeSite ServletUtils.java redirectUrl	20 Jul 202502:14	–	vulnrichment

NVD

Vulners

Node

jeesite jeesiteRange<5.12.1

[
  {
    "vendor": "thinkgem",
    "product": "JeeSite",
    "versions": [
      {
        "version": "5.0",
        "status": "affected"
      },
      {
        "version": "5.1",
        "status": "affected"
      },
      {
        "version": "5.2",
        "status": "affected"
      },
      {
        "version": "5.3",
        "status": "affected"
      },
      {
        "version": "5.4",
        "status": "affected"
      },
      {
        "version": "5.5",
        "status": "affected"
      },
      {
        "version": "5.6",
        "status": "affected"
      },
      {
        "version": "5.7",
        "status": "affected"
      },
      {
        "version": "5.8",
        "status": "affected"
      },
      {
        "version": "5.9",
        "status": "affected"
      },
      {
        "version": "5.10",
        "status": "affected"
      },
      {
        "version": "5.11",
        "status": "affected"
      },
      {
        "version": "5.12.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
github	www.github.com/thinkgem/jeesite5/issues/30
vuldb	www.vuldb.com/
github	www.github.com/thinkgem/jeesite5/issues/30
vuldb	www.vuldb.com/
github	www.github.com/thinkgem/jeesite5/commit/3d06b8d009d0267f0255acc87ea19d29d07cedc3

Parameter	Position	Path	Description	CWE
url	path	src/main/java/com/jeesite/common/web/http/ServletUtils.java#redirectUrl	Open redirect vulnerability via manipulation of the url argument in redirectUrl	CWE-601

25 Aug 2025 17:06Current

3.9Low risk

Vulners AI Score3.9

CVSS 3.13.5

CVSS 24

CVSS 45.1

CVSS 33.5

EPSS0.0019

SSVC

CWE-601