Maurice Fielenbach

1 exploit Active since Dec 2025
CVE-2023-53942 EXPLOITDB HIGH python WORKING POC
File Thingie 2.5.7 - Authenticated Arbitrary File Upload via PHP Zip Archive
File Thingie 2.5.7 contains an authenticated file upload vulnerability that allows remote attackers to upload malicious PHP zip archives to the web server. Attackers can create a custom PHP payload, upload and unzip it, and then execute arbitrary system commands through a crafted PHP script with a command parameter.
CVSS 8.8