CVE-2021-47728

Published: Dec 9, 2025Modified: Feb 23, 2026

9.3

Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: disclosure@vulncheck.com (Secondary)

Description

Selea Targa IP OCR-ANPR Camera contains an unauthenticated command injection vulnerability in utils.php that allows remote attackers to execute arbitrary shell commands. Attackers can exploit the 'addr' and 'port' parameters to inject commands and gain www-data user access through chained local file inclusion techniques.

Affected (15)

Products: Selea: Izero Box Full Firmware, Izero Column Entry/8 Firmware, Izero Column Full/8 Firmware, Targa 504 Firmware, Targa 512 Firmware, Targa 704 Ilb Firmware, Targa 704 Tkm Firmware, Targa 710 Inox Firmware, Targa 750 Firmware, Targa 805 Firmware, Targa Semplice Firmware, Carplateserver

Selea

12 products

Izero Box Full Firmware

Izero Column Entry/8 Firmware

Izero Column Full/8 Firmware

Targa 504 Firmware

Targa 512 Firmware

Targa 704 Ilb Firmware

Targa 704 Tkm Firmware

Targa 710 Inox Firmware

Targa 750 Firmware

Targa 805 Firmware

Targa Semplice Firmware

Carplateserver

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Izero Box Full Firmware	All versions

Running on/with	Platform Versions
Selea Izero Box Full	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Izero Column Entry/8 Firmware	All versions

Running on/with	Platform Versions
Selea Izero Column Entry/8	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Izero Column Full/8 Firmware	All versions

Running on/with	Platform Versions
Selea Izero Column Full/8	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Targa 504 Firmware	All versions

Running on/with	Platform Versions
Selea Targa 504	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Targa 512 Firmware	All versions

Running on/with	Platform Versions
Selea Targa 512	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Targa 704 Ilb Firmware	All versions

Running on/with	Platform Versions
Selea Targa 704 Ilb	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Targa 704 Tkm Firmware	All versions

Running on/with	Platform Versions
Selea Targa 704 Tkm	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Targa 710 Inox Firmware	All versions

Running on/with	Platform Versions
Selea Targa 710 Inox	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Targa 750 Firmware	All versions

Running on/with	Platform Versions
Selea Targa 750	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Targa 805 Firmware	All versions

Running on/with	Platform Versions
Selea Targa 805	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Selea Targa Semplice Firmware	All versions

Running on/with	Platform Versions
Selea Targa Semplice	All versions

Configuration L

4 vulnerable

Vulnerable Software	Affected Versions
Selea Carplateserver	Version 3.005(191112)
Selea Carplateserver	Version 3.005(191206)
Selea Carplateserver	Version 3.100(200225)
Selea Carplateserver	Version 4.013(201105)