CVE-2025-64074

Published: Feb 11, 2026

Modified: Feb 12, 2026

PUBLISHED

Description

A path-traversal vulnerability in the logout functionality of Shenzhen Zhibotong Electronics ZBT WE2001 23.09.27 allows remote attackers to delete arbitrary files on the host by supplying a crafted session cookie value.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.zbtwifi.com

https://neutsec.io/advisories/cve-2025-64074

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-64074

Description

Affected Products

References