EIP-2026-117417

PRE-CVE

LiquidXML Studio 2010 - ActiveX Code Execution

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-117417. PoCs published by Dr_IDE.

AI-analyzed exploit summary This exploit leverages an insecure ActiveX method in LiquidXML Studio 2010 to create and execute an HTA file in the Startup folder, achieving arbitrary code execution via WScript.Shell. The PoC demonstrates file write and command execution through the ActiveX control's OpenFile and AppendString methods.

Description

LiquidXML Studio 2010 - ActiveX Code Execution

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dr_IDE · htmllocalwindows

https://www.exploit-db.com/exploits/24885

View Code ZIP pw:eip

This exploit leverages an insecure ActiveX method in LiquidXML Studio 2010 to create and execute an HTA file in the Startup folder, achieving arbitrary code execution via WScript.Shell. The PoC demonstrates file write and command execution through the ActiveX control's OpenFile and AppendString methods.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: LiquidXML Studio 2010 ActiveX Control

No auth needed

Prerequisites: Victim must open the HTML file in a browser with ActiveX enabled · LiquidXML Studio 2010 ActiveX control must be registered and not kill-bit set

MITRE ATT&CK

T1218 - System Binary Proxy Execution T1059.005 - Visual Basic

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026