CVE-2025-15082

A vulnerability was found in TOZED ZLT M30s up to 1.47. Impacted is an unknown function of the file /reqproc/procpost of the component Web Management Interface. Performing manipulation of the argument goformId results in information disclosure. It is possible to initiate the attack remotely. The...

TOZED ZLT M30S 访问控制错误漏洞

TOZED ZLT M30S is a mobile WiFi router from China's Tongze Kangwei TOZED. An access control error vulnerability exists in TOZED ZLT M30S version 1.47 and earlier, which stems from incorrect manipulation of the parameter goformId in the Web Management Interface component file /reqproc/procpost,...

PT-2025-53405

Name of the Vulnerable Software and Affected Versions TOZED ZLT M30s versions up to 1.47 Description A flaw exists in TOZED ZLT M30s, specifically within the Web Management Interface component. Manipulation of the goformId argument in a request to the /reqproc/proc post file can lead to informati...

CVE-2025-14105

A vulnerability was determined in TOZED ZLT M30S and ZLT M30S PRO 1.47/3.09.06. This impacts an unknown function of the file /reqproc/procpost of the component Web Interface. Executing manipulation of the argument goformId with the input REBOOTDEVICE can lead to denial of service. The attack can...