CVE-2021-35956

MEDIUM

AKCP sensorProbe <SP480-20210624 - XSS

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2021-35956. PoCs published by Tyler Butler, tcbutler320.

AI-analyzed exploit summary This exploit demonstrates stored XSS vulnerabilities in AKCP sensorProbe's web interface via System Settings, Email Settings, and Sensor Description fields. The PoC includes HTTP POST requests with malicious payloads that trigger JavaScript execution when rendered.

Description

Stored cross-site scripting (XSS) in the embedded webserver of AKCP sensorProbe before SP480-20210624 enables remote authenticated attackers to introduce arbitrary JavaScript via the Sensor Description, Email (from/to/cc), System Name, and System Location fields.

Exploits (2)

exploitdb WORKING POC

by Tyler Butler · textwebappshardware

https://www.exploit-db.com/exploits/50080

View Code ZIP pw:eip

This exploit demonstrates stored XSS vulnerabilities in AKCP sensorProbe's web interface via System Settings, Email Settings, and Sensor Description fields. The PoC includes HTTP POST requests with malicious payloads that trigger JavaScript execution when rendered.

Classification

Working Poc 100%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: AKCP sensorProbe SPX476 < SP480-20210624

Auth required

Prerequisites: Authenticated access to the AKCP sensorProbe web interface

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 1 stars

by tcbutler320 · poc

https://github.com/tcbutler320/CVE-2021-35956

View Code ZIP pw:eip

The repository provides functional HTTP request examples demonstrating stored XSS vulnerabilities in AKCP sensorProbe's web interface via System Settings, Email Settings, and Sensor Description fields. The PoC includes crafted payloads with SVG-based JavaScript execution.

Classification

Working Poc 95%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: AKCP sensorProbe < SP480-20210624

Auth required

Prerequisites: Authenticated access to the AKCP sensorProbe web interface

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Permissions Required, Vendor Advisory x_refsource_misc

https://www.akcp.com/support-center/customer-login/sensor-probe-firmware-changelog/

Product, Vendor Advisory x_refsource_misc

http://www.akcp.in.th/downloads/Firmwares/SP480-20210624.zip

Exploit, Third Party Advisory x_refsource_misc

https://tbutler.org/2021/06/28/cve-2021-35956

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/163343/AKCP-sensorProbe-SPX476-Cross-Site-Scripting.html

Scores

CVSS v3 5.4

EPSS 0.0323

EPSS Percentile 86.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (5)

akcp/sensorprobe2_firmware < sp480-20210624

akcp/sensorprobe4_firmware < sp480-20210624

akcp/sensorprobe8-x20_firmware < sp480-20210624

akcp/sensorprobe8-x60_firmware < sp480-20210624

akcp/sensorprobe8_firmware < sp480-20210624

Published Jun 30, 2021

Tracked Since Feb 18, 2026