Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-45985 PoC — LB-LINK多款产品 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2025/CVE-2025-45985.yaml
Associated Vulnerability
Title:LB-LINK多款产品 安全漏洞 (CVE-2025-45985)
Description:LB-LINK BL-X26等都是中国必联(LB-LINK)公司的产品。LB-LINK BL-X26是一款无线路由器。LB-LINK BL-LTE300是一款无线路由器。LB-LINK BL-AC2100是一款无线 Wi-Fi 6 路由器。 LB-LINK多款产品存在安全漏洞,该漏洞源于bs_SetSSIDHide函数存在命令注入。以下产品和版本受到影响:BL-WR9000 V2.4.9版本、BL-AC2100_AZ3 V1.0.4版本、BL-X10_AC8 V1.0.5版本、BL-LTE300 V1.2
Description
Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL-F1200_AT1 v1.0.0, BL-X26_AC8 v1.2.8, BLAC450M_AE4 v4.0.0 and BL-X26_DA3 v1.2.7 were discovered to contain a command injection vulnerability via the bs_SetSSIDHide function.
File Snapshot

 id: CVE-2025-45985

info:
  name: Blink Router - Command Injection
  author: darses
  severity: crit

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.