CVE-2016-0854

CRITICAL

Advantech WebAccess <8.1 - File Upload

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2016-0854. PoCs published by Metasploit, rgod, including Metasploit module exploits/windows/scada/advantech_webaccess_dashboard_file_upload.

AI-analyzed exploit summary This Metasploit module exploits an arbitrary file upload vulnerability in Advantech WebAccess 8.0, allowing unauthenticated remote code execution via a malicious ASPX file upload.

Description

Unrestricted file upload vulnerability in the uploadImageCommon function in the UploadAjaxAction script in the WebAccess Dashboard Viewer in Advantech WebAccess before 8.1 allows remote attackers to write to files of arbitrary types via unspecified vectors.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/39735

This Metasploit module exploits an arbitrary file upload vulnerability in Advantech WebAccess 8.0, allowing unauthenticated remote code execution via a malicious ASPX file upload.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Advantech WebAccess 8.0
No auth needed
Prerequisites: Target running Advantech WebAccess 8.0 · Network access to port 80
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
by rgod · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/scada/advantech_webaccess_dashboard_file_upload.rb

This Metasploit module exploits an arbitrary file upload vulnerability in Advantech WebAccess 8.0, allowing unauthenticated attackers to upload and execute malicious ASPX files on the server. The exploit leverages insufficient validation in the uploadImageCommon function to achieve remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Advantech WebAccess 8.0
No auth needed
Prerequisites: Network access to the target server · Advantech WebAccess 8.0 running on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Exploit exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/39735/
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-16-127
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-16-014-01
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-16-128
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-16-129

Scores

CVSS v3 9.8
EPSS 0.7215
EPSS Percentile 98.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Status published
Products (1)
advantech/webaccess < 8.0
Published Jan 15, 2016
Tracked Since Feb 18, 2026