2 matches found
CVE-2025-11045
A vulnerability was identified in WAYOS LQ04, LQ05, LQ06, LQ07 and LQ09 22.03.17. This affects an unknown function of the file /usbpaswd.asp. The manipulation of the argument Name leads to command injection. The attack can be initiated remotely. The exploit is publicly available and might be used...
PT-2022-25891 · Unknown · Wayos Lq 09
Name of the Vulnerable Software and Affected Versions: WAYOS LQ 09 version 22.03.17V Description: The issue allows attackers to send crafted requests to the server from the affected device due to a lack of authentication in the component Usb upload.htm. This enables Cross-Site Request Forgery CSR...