CVE-2021-47728

CRITICAL

Selea Targa IP OCR-ANPR Camera - Command Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47728. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates an unauthenticated remote code execution vulnerability in Selea Targa IP OCR-ANPR cameras by chaining a local file inclusion (LFI) to extract credentials and then injecting arbitrary commands via the 'addr' parameter in utils.php.

Description

Selea Targa IP OCR-ANPR Camera contains an unauthenticated command injection vulnerability in utils.php that allows remote attackers to execute arbitrary shell commands. Attackers can exploit the 'addr' and 'port' parameters to inject commands and gain www-data user access through chained local file inclusion techniques.

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · bashwebappshardware

https://www.exploit-db.com/exploits/49460

View Code ZIP pw:eip

This exploit demonstrates an unauthenticated remote code execution vulnerability in Selea Targa IP OCR-ANPR cameras by chaining a local file inclusion (LFI) to extract credentials and then injecting arbitrary commands via the 'addr' parameter in utils.php.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Selea Targa IP OCR-ANPR Camera (various models, firmware versions including BLD201113005214, BLD201106163745, etc.)

No auth needed

Prerequisites: Network access to the target device · Vulnerable firmware version

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1202 - Indirect Command Execution T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Core References

Exploit, Third Party Advisory exploit

https://www.exploit-db.com/exploits/49460

Various Sources product

https://www.selea.com

Various Sources product

https://github.com/zeroscience

Third Party Advisory third-party-advisory

https://www.vulncheck.com/advisories/selea-targa-ip-camera-remote-code-execution-via-utils

Third Party Advisory third-party-advisory

https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5620.php

Scores

CVSS v3 9.8

EPSS 0.0231

EPSS Percentile 81.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-78

Status published

Products (16)

selea/carplateserver 3.005\(191112\)

selea/carplateserver 3.005\(191206\)

selea/carplateserver 3.100\(200225\)

selea/carplateserver 4.013\(201105\)

selea/izero_box_full_firmware

selea/izero_column_entry\/8_firmware

selea/izero_column_full\/8_firmware

Selea/Selea Targa IP OCR-ANPR Camera

selea/targa_504_firmware

selea/targa_512_firmware

... and 6 more

Published Dec 09, 2025

Tracked Since Feb 18, 2026