Lucene search
K

35 matches found

CNNVD
CNNVD
added 2026/03/11 12:0 a.m.9 views

File Thingie 安全漏洞

File Thingie is a file manager personally developed by Frances Leese. Version 2.5.7 of File Thingie contains a security vulnerability. This vulnerability stems from an arbitrary file upload feature present in the ft2.php endpoint, which could allow attackers to upload malicious files and execute...

9.8CVSS6AI score0.00903EPSS
Exploits1References3
OSV
OSV
added 2025/12/18 8:15 p.m.4 views

CVE-2023-53942

File Thingie 2.5.7 contains an authenticated file upload vulnerability that allows remote attackers to upload malicious PHP zip archives to the web server. Attackers can create a custom PHP payload, upload and unzip it, and then execute arbitrary system commands through a crafted PHP script with ...

9.4CVSS6AI score0.00497EPSS
Exploits1References3
NVD
NVD
added 2025/12/18 8:15 p.m.6 views

CVE-2023-53942

File Thingie 2.5.7 contains an authenticated file upload vulnerability that allows remote attackers to upload malicious PHP zip archives to the web server. Attackers can create a custom PHP payload, upload and unzip it, and then execute arbitrary system commands through a crafted PHP script with ...

9.4CVSS0.00497EPSS
Exploits1References3
CVE
CVE
added 2025/12/18 7:53 p.m.12 views

CVE-2023-53942

CVE-2023-53942 affects File Thingie 2.5.7. The issue is an authenticated file upload vulnerability: attackers can upload PHP zip archives, unzip them, and execute arbitrary system commands via a crafted PHP script with a command parameter. PT-2025-52321 notes the vulnerability requires minimal au...

9.4CVSS7.4AI score0.00497EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2025/12/18 7:53 p.m.27 views

CVE-2023-53942 File Thingie 2.5.7 Authenticated Arbitrary File Upload Remote Code Execution

File Thingie 2.5.7 contains an authenticated file upload vulnerability that allows remote attackers to upload malicious PHP zip archives to the web server. Attackers can create a custom PHP payload, upload and unzip it, and then execute arbitrary system commands through a crafted PHP script with ...

9.4CVSS0.00497EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/18 12:0 a.m.5 views

PT-2025-52321

Name of the Vulnerable Software and Affected Versions File Thingie version 2.5.7 Description The software contains an authenticated file upload issue that enables remote attackers to upload malicious PHP zip archives to the web server. Attackers can create a custom PHP payload, upload and unzip i...

9.4CVSS7.5AI score0.00497EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.3 views

File Thingie 安全漏洞

File Thingie is a file manager by the individual developer Frances Leese. A security vulnerability exists in File Thingie version 2.5.7, which stems from an authenticated file upload vulnerability that could lead to the execution of arbitrary system commands...

9.4CVSS6.9AI score0.00497EPSS
Exploits1References3
0day.today
0day.today
added 2023/05/05 12:0 a.m.186 views

File Thingie 2.5.7 - Remote Code Execution Exploit

!/usr/bin/python Exploit Title: File Thingie 2.5.7 - Remote Code Execution RCE Google Dork: N/A Date: 27th of April, 2023 Exploit Author: Maurice Fielenbach grimlockx - Hexastrike Cybersecurity UG haftungsbeschränkt Software Link: https://github.com/leefish/filethingie Version: 2.5.7 Tested on: N...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/05/05 12:0 a.m.322 views

File Thingie 2.5.7 Shell Upload

!/usr/bin/python Exploit Title: File Thingie 2.5.7 - Remote Code Execution RCE Google Dork: N/A Date: 27th of April, 2023 Exploit Author: Maurice Fielenbach grimlockx - Hexastrike Cybersecurity UG haftungsbeschränkt Software Link: https://github.com/leefish/filethingie Version: 2.5.7 Tested on: N...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

File Thingie 2.5.5 - File Security Bypass

No description provided by source. Title: File Thingie v2.5.5 File Security Bypass Author: Jeremiah Talamantes RedTeam Security Website: http://www.redteamsecure.com/labs Date: 5/15/2010 Application: File Thingie Version: 2.5.5 Link: http://www.solitude.dk/filethingie/download Description: There...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2010/05/19 12:0 a.m.19 views

File Thingie 2.5.5 Cross Site Scripting

---------------------------------------------------------------------------------------- Title: File Thingie v2.5.5 XSS Vulnerability Author: Jeremiah Talamantes RedTeam Security Website: http://www.redteamsecure.com/labs Date: 5/15/2010 Application: File Thingie Version: 2.5.5 Link:...

7.4AI score
Exploits0
0day.today
0day.today
added 2010/05/16 12:0 a.m.37 views

File Thingie v2.5.5 File Security Bypass

Exploit for php platform in category web applications ======================================== File Thingie v2.5.5 File Security Bypass ======================================== Title: File Thingie v2.5.5 File Security Bypass Author: Jeremiah Talamantes RedTeam Security Website:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2010/05/16 12:0 a.m.17 views

File Thingie 2.5.5 - File Security Bypass

File Thingie 2.5.5 - File Security Bypass Title: File Thingie v2.5.5 File Security Bypass Author: Jeremiah Talamantes RedTeam Security Website: http://www.redteamsecure.com/labs Date: 5/15/2010 Application: File Thingie Version: 2.5.5 Link: http://www.solitude.dk/filethingie/download Description:...

Exploits0
Exploit DB
Exploit DB
added 2010/05/16 12:0 a.m.96 views

File Thingie 2.5.5 - File Security Bypass

Title: File Thingie v2.5.5 File Security Bypass Author: Jeremiah Talamantes RedTeam Security Website: http://www.redteamsecure.com/labs Date: 5/15/2010 Application: File Thingie Version: 2.5.5 Link: http://www.solitude.dk/filethingie/download Description: There are security controls in place that...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/04/03 12:0 a.m.144 views

Remote access vulnerability using File Thingie v2.5.4

============================================================ !vuln File Thingie v2.5.4 Previous versions may also be affected. ============================================================ ============================================================ !risk Low There are currently just a few website...

1AI score
Exploits0
Rows per page
Query Builder