Unrated severityNVD Advisory· Published Jan 15, 2026· Updated Mar 5, 2026
ZesleCP 3.1.9 - Remote Code Execution (RCE) (Authenticated)
CVE-2021-47794
Description
ZesleCP 3.1.9 contains an authenticated remote code execution vulnerability that allows attackers to create malicious FTP accounts with shell injection payloads. Attackers can exploit the FTP account creation endpoint by injecting a reverse shell command that establishes a network connection to a specified listening host.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Zeslecp/ZesleCPv5Range: <=3.1.9
Patches
Vulnerability mechanics
References
4- www.exploit-db.com/exploits/50233mitreexploit
- www.youtube.com/watchmitreexploit
- www.vulncheck.com/advisories/zeslecp-remote-code-execution-rce-authenticatedmitrethird-party-advisory
- zeslecp.commitreproduct
News mentions
0No linked articles in our index yet.