CVE-2021-47729
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-09

Last updated on: 2026-02-23

Assigner: VulnCheck

Description
Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'files_list' parameter that allows attackers to inject malicious HTML and script code. Attackers can send a POST request to /cgi-bin/get_file.php with crafted payload to execute arbitrary scripts in victim's browser session.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-09
Last Modified
2026-02-23
Generated
2026-06-16
AI Q&A
2025-12-09
EPSS Evaluated
2026-06-15
NVD
CVE-2021-47729
EUVD
EUVD-2021-34741
Affected Vendors & Products
Showing 15 associated CPEs
Vendor Product Version / Range
selea izero_box_full_firmware *
selea izero_column_entry/8_firmware *
selea izero_column_full/8_firmware *
selea targa_504_firmware *
selea targa_512_firmware *
selea targa_704_ilb_firmware *
selea targa_704_tkm_firmware *
selea targa_710_inox_firmware *
selea targa_750_firmware *
selea targa_805_firmware *
selea targa_semplice_firmware *
selea carplateserver 3.005(191112)
selea carplateserver 3.005(191206)
selea carplateserver 3.100(200225)
selea carplateserver 4.013(201105)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-79 The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a stored cross-site scripting (XSS) issue in the Selea Targa IP OCR-ANPR Camera. It occurs in the 'files_list' parameter, where attackers can inject malicious HTML and script code. By sending a crafted POST request to /cgi-bin/get_file.php, attackers can execute arbitrary scripts in the victim's browser session.

Impact Analysis

This vulnerability can allow attackers to execute arbitrary scripts in the victim's browser session, potentially leading to theft of sensitive information, session hijacking, or other malicious actions performed on behalf of the victim.

Detection Guidance

This vulnerability can be detected by sending a crafted POST request to the endpoint /cgi-bin/get_file.php with a payload in the 'files_list' parameter that includes malicious HTML or script code. For example, you can use curl to send a test POST request with a payload such as `<marquee><h3>t00t</h3></marquee>` to check if the input is improperly sanitized and reflected back, indicating the presence of the stored XSS vulnerability. Example command: curl -X POST -d 'files_list=<marquee><h3>t00t</h3></marquee>' http://<camera-ip>/cgi-bin/get_file.php -v [5]

Mitigation Strategies

Immediate mitigation steps include updating the camera firmware and CPS software to the latest versions where the vulnerability has been fixed, as acknowledged by the vendor. If updates are not immediately available, restrict access to the affected endpoint /cgi-bin/get_file.php to trusted users only, and monitor for suspicious POST requests targeting the 'files_list' parameter. Additionally, consider implementing network-level protections such as web application firewalls (WAF) to block malicious payloads attempting to exploit this stored XSS vulnerability. [1, 3]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2021-47729. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart