Security Advisory

CVE-2021-47888

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-23 16:47:34

Last updated 2026-03-05 01:29:07

Assigner VulnCheck

State PUBLISHED

Description

Textpattern versions prior to 4.8.3 contain an authenticated remote code execution vulnerability that allows logged-in users to upload malicious PHP files. Attackers can upload a PHP file with a shell command execution payload and execute arbitrary commands by accessing the uploaded file through a specific URL parameter.

← Browse all CVEs View on cve.org ↗