CVE-2021-47931

MEDIUM

Exponent CMS 2.6 Text Editing Endpoint - Stored Cross-Site Scripting

Title source: manual

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-47931. PoCs published by heinjame.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in Exponent CMS 2.6, including stored XSS, database credential disclosure, and authentication brute-forcing. It includes functional code for brute-forcing usernames and passwords, as well as a payload for XSS.

Description

Exponent CMS 2.6 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts through the Title and Text Block parameters in the text editing endpoint. Attackers can inject iframe payloads with embedded SVG onload events to execute arbitrary JavaScript. The application also exposes database credentials in responses and lacks brute-force protection on authentication endpoints.

Exploits (1)

exploitdb WORKING POC

by heinjame · textwebappsphp

https://www.exploit-db.com/exploits/50611

View Code ZIP pw:eip

The exploit demonstrates multiple vulnerabilities in Exponent CMS 2.6, including stored XSS, database credential disclosure, and authentication brute-forcing. It includes functional code for brute-forcing usernames and passwords, as well as a payload for XSS.

Classification

Working Poc 90%

Attack Type

Xss | Info Leak | Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Exponent CMS <=2.6

No auth needed

Prerequisites: access to the target URL · username and password lists for brute-forcing

MITRE ATT&CK

T1059.007 - JavaScript T1189 - Drive-by Compromise T1005 - Data from Local System T1552 - Unsecured Credentials T1190 - Exploit Public-Facing Application T1078 - Valid Accounts

devstral-2 · analyzed May 10, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit

ExploitDB-50611

https://www.exploit-db.com/exploits/50611

Product product

Official Product Homepage

https://www.exponentcms.org/

Third Party Advisory third-party-advisory

VulnCheck Advisory: Exponent CMS 2.6 Multiple Vulnerabilities Stored XSS Authentication

https://www.vulncheck.com/advisories/exponent-cms-multiple-vulnerabilities-stored-xss-authentication

Scores

CVSS v3 6.4

EPSS 0.0021

EPSS Percentile 11.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-79

Status published

Products (1)

Exponentcms/Exponent CMS < 2.6

Published May 10, 2026

Tracked Since May 10, 2026