CVE-2021-47751

HIGH

Phphtmledit Rich Text Editor < 6.6 - Path Traversal

Title source: rule

Description

CuteEditor for PHP (now referred to as Rich Text Editor) 6.6 contains a directory traversal vulnerability in the browse template feature that allows attackers to write files to arbitrary web root directories. Attackers can exploit the ServerMapPath() function by renaming uploaded HTML files using directory traversal sequences to write files outside the intended template directory.

Exploits (1)

exploitdb WORKING POC

by Stefan Hesselman · textwebappsphp

https://www.exploit-db.com/exploits/50994

View Code ZIP pw:eip

References (3)

[Product] http://phphtmledit.com/

[Exploit] https://www.exploit-db.com/exploits/50994

[Third Party Advisory] https://www.vulncheck.com/advisories/cuteeditor-for-php-directory-traversal

Scores

CVSS v3 7.5

EPSS 0.0037

EPSS Percentile 58.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Details

CWE

CWE-22

Status published

Products (2)

Phphtmledit/CuteEditor < 6.6

phphtmledit/rich_text_editor < 6.6

Published Jan 13, 2026

Tracked Since Feb 18, 2026