Zer0FauLT

3 exploits Active since Dec 2025
CVE-2023-53950 EXPLOITDB CRITICAL text WORKING POC
InnovaStudio WYSIWYG Editor 5.4 - Unrestricted File Upload
InnovaStudio WYSIWYG Editor 5.4 contains an unrestricted file upload vulnerability that allows attackers to bypass file extension restrictions through filename manipulation. Attackers can upload malicious ASP shells by using null byte techniques and alternate file extensions to circumvent upload controls in the asset manager.
CVSS 9.8
CVE-2023-53949 EXPLOITDB HIGH text WORKING POC
AspEmail 5.6.0.2 - Privilege Escalation
AspEmail 5.6.0.2 contains a binary permission vulnerability that allows local users to escalate privileges through the Persits Software EmailAgent service. Attackers can exploit full write permissions in the BIN directory to replace the service executable and gain elevated system access.
CVSS 8.4
EIP-2026-100078 EXPLOITDB text WORKING POC
Roxy Fileman 1.4.5 - Arbitrary File Upload