Shenzhen Zhibotong Electronics ZBT WE2001 Path-Traversal Vulnerability in Logout Function Allowing Arbitrary File Deletion

Vulnerability

A path-traversal vulnerability has been identified in the logout functionality of the Shenzhen Zhibotong Electronics ZBT WE2001 router, specifically in the 23.09.27 version. This vulnerability allows remote attackers to delete arbitrary files on the host by sending a crafted session cookie value.

Impact

Exploitation of this vulnerability leads to arbitrary file deletion on the host system.

Added: Feb 12, 2026, 12:29 AM

Updated: Feb 12, 2026, 12:29 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Shenzhen Zhibotong Electronics ZBT WE2001 Path-Traversal Vulnerability in Logout Function Allowing Arbitrary File Deletion

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating