Selea S.R.L Selea Targa Ip Ocr-Anpr Camera vulnerabilities
4 known vulnerabilities affecting selea_s.r.l/selea_targa_ip_ocr-anpr_camera.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2021-47731P2CRITICALCVSS 9.8vModel: iZero2025-12-09
CVE-2021-47731 [CRITICAL] CWE-306 CVE-2021-47731: Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows un
Selea Targa IP OCR-ANPR Camera contains a hard-coded developer password vulnerability that allows unauthorized configuration access through an undocumented page. Attackers can exploit the hidden endpoint by using the hard-coded password 'Selea781830' to enable configuration upload and overwrite device settings.
nvd
CVE-2021-47730P3HIGHCVSS 8.8vModel: iZero2025-12-09
CVE-2021-47730 [HIGH] CWE-352 CVE-2021-47730: Selea Targa IP OCR-ANPR Camera contains a cross-site request forgery vulnerability that allows attac
Selea Targa IP OCR-ANPR Camera contains a cross-site request forgery vulnerability that allows attackers to create administrative users without authentication. Attackers can craft a malicious web page that submits a form to add a new admin user with full system privileges when a logged-in user visits the page.
nvd
CVE-2021-47727P2MEDIUMCVSS 5.3vModel: iZero2025-12-09
CVE-2021-47727 [MEDIUM] CWE-306 CVE-2021-47727: Selea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote attacker
Selea Targa IP OCR-ANPR Camera contains an unauthenticated vulnerability that allows remote attackers to access live video streams without authentication. Attackers can directly connect to RTP/RTSP or M-JPEG streams by requesting specific endpoints like p1.mjpg or p1.264 to view camera footage.
nvd
CVE-2021-47729P4MEDIUMCVSS 5.4vModel: iZerovFirmware: BLD201113005214+1 more2025-12-09
CVE-2021-47729 [MEDIUM] CWE-79 CVE-2021-47729: Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'files_li
Selea Targa IP OCR-ANPR Camera contains a stored cross-site scripting vulnerability in the 'files_list' parameter that allows attackers to inject malicious HTML and script code. Attackers can send a POST request to /cgi-bin/get_file.php with crafted payload to execute arbitrary scripts in victim's browser session.
nvd