Is CVE-2025-7763 actively exploited?

CVE-2025-7763 has no public evidence of in-the-wild exploitation as of 2026-04-29.

What is the CVSS score for CVE-2025-7763?

CVE-2025-7763 has a CVSS score of 2.1 (LOW severity). Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X.

How do I patch CVE-2025-7763?

Patch guidance is available from jeesite security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2025-7763.

CVE-2025-7763 - remediation guidance & executive summary

Description

A vulnerability, which was classified as problematic, was found in thinkgem JeeSite up to 5.12.0. Affected is the function select of the file src/main/java/com/jeesite/modules/cms/web/SiteController.java of the component Site Controller. The manipulation of the argument redirect leads to open redirect. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The patch is identified as 3d06b8d009d0267f0255acc87ea19d29d07cedc3. It is recommended to apply a patch to fix this issue.

CVSS Metrics

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector: network
Complexity: low
Privileges: none
User Action: passive
Confidentiality: undefined
Integrity: undefined
Availability: undefined
Weaknesses: CWE-601

Metadata

Primary Vendor: JEESITE
Published: 7/17/2025
Last Modified: 4/29/2026
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

jeesite : jeesite

Remediation Guidance

Executive Summary

Cite this page

CVE-2025-7763. CVEDatabase.com. Retrieved 1 May 2026. https://cvedatabase.com/cve/CVE-2025-7763

View on NIST NVD

CVE-2025-7763 vulnerability