Unrated severityNVD Advisory· Published Jan 15, 2026· Updated Mar 5, 2026

WebsiteBaker 2.13.0 - Remote Code Execution (RCE) (Authenticated)

CVE-2021-47788

Description

WebsiteBaker 2.13.0 contains an authenticated remote code execution vulnerability that allows users with language editing permissions to execute arbitrary code. Attackers can exploit the language installation endpoint by manipulating language installation parameters to achieve remote code execution on the server.

Affected products

Website Baker/Websitebakerv5
Range: 2.13.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/50310mitreexploit
www.vulncheck.com/advisories/websitebaker-remote-code-execution-rce-authenticatedmitrethird-party-advisory
websitebaker.orgmitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000