CVE-2021-47734

HIGH

CMSimple 5.4 - Authenticated Local File Inclusion and Remote Code Execution via Session File Manipulation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47734. PoCs published by S1lv3r.

AI-analyzed exploit summary This exploit demonstrates an authenticated Local File Inclusion (LFI) to Remote Code Execution (RCE) vulnerability in CMSimple 5.4. It leverages session file manipulation and a race condition to achieve RCE via a reverse shell.

Description

CMSimple 5.4 contains an authenticated local file inclusion vulnerability that allows remote attackers to manipulate PHP session files and execute arbitrary code. Attackers can leverage the vulnerability by changing the functions file path and uploading malicious PHP code through session file upload mechanisms.

Exploits (1)

exploitdb WORKING POC
by S1lv3r · pythonwebappsphp
https://www.exploit-db.com/exploits/50547

This exploit demonstrates an authenticated Local File Inclusion (LFI) to Remote Code Execution (RCE) vulnerability in CMSimple 5.4. It leverages session file manipulation and a race condition to achieve RCE via a reverse shell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: CMSimple 5.4
Auth required
Prerequisites: Valid credentials for CMSimple 5.4 · Network access to the target · PHP session file write permissions
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 7.8
EPSS 0.0071
EPSS Percentile 48.7%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-98
Status published
Products (2)
cmsimple/cmsimple 5.4
Cmsimple/CMSimple CMSimple 5.4
Published Dec 23, 2025
Tracked Since Feb 18, 2026