LOW
JeecgBoot
CVE published 2026-05-09
CVE-2026-8195
CVE-2026-8195 is a cross-site scripting issue reported in JeecgBoot up to 3.9.1, centered on SVG file handling in CommonController.java. The CVE description says the attack can be executed remotely, that exploit material is public, and that the vendor was contacted early but did not respond. While the CVSS score is low, publicly available exploitation details increase the need to verify exposure and harde [truncated]