CVE-2025-10770

Name of the Vulnerable Software and Affected Versions jeecgboot JimuReport versions up to 2.1.2

Description A vulnerability exists in jeecgboot JimuReport up to version 2.1.2. The issue impacts an unknown function within the /drag/onlDragDataSource/testConnection file of the MySQL JDBC Handler component, leading to deserialization. Remote exploitation is possible. The exploit has been made public.

Recommendations Versions prior to 2.1.2 should be used. Consider restricting access to the /drag/onlDragDataSource/testConnection file as a temporary workaround.