A vulnerability described as critical has been identified in JeecgBoot up to 3.9.1 . The impacted element is an unknown function of the file /sys/comment/add . Such manipulation leads to improper access controls. This vulnerability is documented as CVE-2026-9581 . The attack can be executed remotely. Additionally, an exploit exists. Upgrading the affected component is recommended.