CVE-2025-11045 | WAYOS LQ_09 22.03.17 /usb_paswd.asp Name command injection

September 26, 2025 Yanac

A vulnerability was found in WAYOS LQ_09 22.03.17. It has been rated as critical. This affects an unknown function of the file /usb_paswd.asp. The manipulation of the argument Name leads to command injection.

This vulnerability is documented as CVE-2025-11045. The attack can be initiated remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More

Brits warned as illegal robo-callers with offshored call centers fined half a million
CVE-2025-60164 | NewsMAN NewsMANApp Plugin up to 2.7.7 on WordPress cross-site request forgery