CVE-2021-47729
Selea Targa IP Camera Stored Cross-Site Scripting via Files List
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'files_list' parameter that allows attackers to inject malicious HTML and script code. Attackers can send a POST request to /cgi-bin/get_file.php with crafted payload to execute arbitrary scripts in victim's browser session.
| CWE | CWE-79 |
| Vendor | selea s.r.l. |
| Product | selea targa ip ocr-anpr camera |
| Published | Dec 9, 2025 |
| Last Updated | Apr 7, 2026 |
Stay Ahead of the Next One
Get instant alerts for selea s.r.l. selea targa ip ocr-anpr camera
Be the first to know when new unknown vulnerabilities affecting selea s.r.l. selea targa ip ocr-anpr camera are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
selea s.r.l. / Selea Targa IP OCR-ANPR Camera
Model: iZero Firmware: BLD201113005214 CPS: 4.013(201105)
References
exploit-db.com: https://www.exploit-db.com/exploits/49454 selea.com: https://www.selea.com zeroscience.mk: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5614.php selea.com: https://www.selea.com/product/ vulncheck.com: https://www.vulncheck.com/advisories/selea-targa-ip-camera-stored-cross-site-scripting-via-files-list
Credits
LiquidWorm as Gjoko Krstic of Zero Science Lab