EIP-2026-102543

PRE-CVE

XpoLog Center 6 - Remote Command Execution / Cross-Site Request Forgery

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102543. PoCs published by LiquidWorm.

AI-analyzed exploit summary This exploit demonstrates a CSRF vulnerability in XpoLog Center V6 that allows remote command execution with SYSTEM privileges. The PoC uses a crafted HTML form to submit a task that executes arbitrary commands via cmd.exe.

Description

XpoLog Center 6 - Remote Command Execution / Cross-Site Request Forgery

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · textwebappsjsp

https://www.exploit-db.com/exploits/40050

View Code ZIP pw:eip

This exploit demonstrates a CSRF vulnerability in XpoLog Center V6 that allows remote command execution with SYSTEM privileges. The PoC uses a crafted HTML form to submit a task that executes arbitrary commands via cmd.exe.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: XpoLog Center V6 (versions 6.4469, 6.4254, 6.4252, 6.4250, 6.4237, 6.4235, 5.4018)

No auth needed

Prerequisites: Victim must visit a malicious webpage or open a crafted HTML file · XpoLog Center V6 must be accessible and vulnerable

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026