cvedb.io
CVE-2025-60269
CRITICAL · CVSS 9.4
EPSS exploitation probability: 0%
Published 2025-10-10T17:15:38.880 · Last modified 2026-06-17T09:49:37.770

Summary

JEEWMS 20250820 is vulnerable to SQL Injection in the exportXls function located in the src/main/java/org/jeecgframework/web/cgreport/controller/excel/CgExportExcelController.java file.

Affected products

huayi-tec — jeewms

Does this affect you?

Add your gear to cvedb and we'll alert you only when huayi-tec ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.