CVE-2015-4027

Acunetix Web Vulnerability Scanner < 10 - Local Privilege Escalation via AcuWVSSchedulerv10 Service

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-4027. PoCs published by Daniele Linguaglossa.

AI-analyzed exploit summary This exploit leverages a local privilege escalation vulnerability in Acunetix WVS 10 by injecting malicious arguments into the 'reporttemplate' parameter of the '/api/addScan' endpoint, allowing arbitrary command execution as SYSTEM.

Description

The AcuWVSSchedulerv10 service in Acunetix Web Vulnerability Scanner (WVS) before 10 build 20151125 allows local users to gain privileges via a command parameter in the reporttemplate property in a params JSON object to api/addScan.

Exploits (1)

exploitdb WORKING POC
by Daniele Linguaglossa · pythonlocalwindows
https://www.exploit-db.com/exploits/38847

This exploit leverages a local privilege escalation vulnerability in Acunetix WVS 10 by injecting malicious arguments into the 'reporttemplate' parameter of the '/api/addScan' endpoint, allowing arbitrary command execution as SYSTEM.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Acunetix WVS 10
No auth needed
Prerequisites: Local access to the target system · Acunetix WVS 10 installed with default configuration
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

EPSS 0.0116
EPSS Percentile 63.0%

Details

CWE
CWE-264
Status published
Products (1)
acunetix/web_vulnerability_scanner < 10
Published Dec 17, 2015
Tracked Since Feb 18, 2026