CVE-2025-45618

Description

Incorrect access control in the component /admin/sys/datasource/ajaxList of jeeweb-mybatis-springboot v0.0.1.RELEASE allows attackers to access sensitive information via a crafted payload.

PUBLISHED Reserved 2025-04-22 | Published 2025-05-05 | Updated 2025-05-06 | Assigner mitre

References

github.com/huangjian888/jeeweb-mybatis-springboot/issues/31

cve.org (CVE-2025-45618)

nvd.nist.gov (CVE-2025-45618)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.