QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2025-34040

Back to search

CVE-2025-34040

Published: Jun 24, 2025

Modified: May 14, 2026

PUBLISHED

Description

An arbitrary file upload vulnerability exists in the Zhiyuan OA platform via the wpsAssistServlet interface. The realFileType and fileId parameters are improperly validated during multipart file uploads, allowing unauthenticated attackers to upload crafted JSP files outside of intended directories using path traversal. Successful exploitation enables remote code execution as the uploaded file can be accessed and executed through the web server. Exploitation evidence was observed by the Shadowserver Foundation on 2025-02-01 UTC.

VendorProductVersions

Seeyon (Beijing Zhiyuan Internet Software Co., Ltd.)

Zhiyuan OA Web Application System

affected
5.0
affected
5.1 - <= 5.6sp1
affected
6.0 - <= 6.1sp2
affected
7.0
affected
7.0sp1 - <= 7.1

+2 more versions

Weaknesses (CWE)

CWE-434
CWE-22

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now