Authentcation bypass via path traversal

A path traversal vulnerability in the check_token function of Shenzhen Zhibotong Electronics ZBT WE2001 23.09.27 allows remote attackers to bypass authentication and perform administrative actions by supplying a crafted session cookie value.

ID: CVE-2025-64075	Severity:
Vendor: Shenzhen Zhibotong Electronics	CVSS Score: N/A
Status: Draft	Date: 2026-02-11