CVE-2021-47751

HIGH

Rich Text Editor < 6.6 - Path Traversal and Arbitrary File Write via ServerMapPath Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47751. PoCs published by Stefan Hesselman.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in CuteEditor for PHP 6.6, allowing an attacker to write files to arbitrary directories within the web root via the 'rename file' functionality. The vulnerability arises from insufficient path sanitization in the ServerMapPath function.

Description

CuteEditor for PHP (now referred to as Rich Text Editor) 6.6 contains a directory traversal vulnerability in the browse template feature that allows attackers to write files to arbitrary web root directories. Attackers can exploit the ServerMapPath() function by renaming uploaded HTML files using directory traversal sequences to write files outside the intended template directory.

Exploits (1)

exploitdb WORKING POC

by Stefan Hesselman · textwebappsphp

https://www.exploit-db.com/exploits/50994

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in CuteEditor for PHP 6.6, allowing an attacker to write files to arbitrary directories within the web root via the 'rename file' functionality. The vulnerability arises from insufficient path sanitization in the ServerMapPath function.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: CuteEditor for PHP 6.6

Auth required

Prerequisites: Access to CuteEditor functions · Ability to upload and rename files

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit

https://www.exploit-db.com/exploits/50994

Product product

http://phphtmledit.com/

Third Party Advisory third-party-advisory

https://www.vulncheck.com/advisories/cuteeditor-for-php-directory-traversal

Scores

CVSS v3 7.5

EPSS 0.0072

EPSS Percentile 48.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-22

Status published

Products (2)

Phphtmledit/CuteEditor < 6.6

phphtmledit/rich_text_editor < 6.6

Published Jan 13, 2026

Tracked Since Feb 18, 2026