CVE-2025-10978 | JeecgBoot up to 3.8.2 Filter /sys/user/exportXls improper authorization
A vulnerability described as critical has been identified in JeecgBoot up to 3.8.2. The affected element is an unknown function of the file /sys/user/exportXls of the component Filter Handler. The manipulation results in improper authorization.
This vulnerability was named CVE-2025-10978. The attack may be performed from remote. In addition, an exploit is available.
The vendor was contacted early about this disclosure but did not respond in any way.