CVE-2026-9581 | JeecgBoot up to 3.9.1 /sys/comment/add access control (Issue 9598)

Inserito da Angelo Barbosa | Mag 26, 2026 | CVE

A vulnerability described as critical has been identified in JeecgBoot up to 3.9.1. The impacted element is an unknown function of the file /sys/comment/add. Such manipulation leads to improper access controls.

This vulnerability is documented as CVE-2026-9581. The attack can be executed remotely. Additionally, an exploit exists.

Upgrading the affected component is recommended.

CVE-2026-9581 | JeecgBoot up to 3.9.1 /sys/comment/add access control (Issue 9598)

Post correlati

CVE-2024-46853 | Linux Kernel up to 6.1.110/6.6.51/6.10.10 nxp-fspi out-of-bounds

CVE-2025-0466 | Sensei LMS Plugin up to 4.24.3 on WordPress REST API sensei_email/sensei_message information disclosure

CVE-2025-9760 | Portabilis i-Educar up to 2.10 Matricula API /module/Api/aluno improper authorization

CVE-2024-1519 | ProfilePress Plugin up to 4.14.4 on WordPress cross site scripting