CVE-2025-45854 Information
Jun 04, 2025
cve
Description
An arbitrary file upload vulnerability in the component /server/executeExec of JEHC-BPM v2.0.1 allows attackers to execute arbitrary code via uploading a crafted file.
Reference
https://gist.github.com/Cafe-Tea/bc14b38f4bfd951de2979a24c3358460 https://gitee.com/jehc/JEHC-BPM
Related CNNVD
CNNVD-202506-1735 (Published: 2025-06-13)
Share on: