EIP-2026-119031

PRE-CVE

Pegasus Imaging ThumbnailXpress 1.0 - Arbitrary File Deletion

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119031. PoCs published by shinnai.

AI-analyzed exploit summary This exploit leverages an insecure method in Pegasus Imaging ThumbnailXpress ActiveX control to delete arbitrary files on the target system. The vulnerability is triggered by calling the CacheFile() method with a specified file path, which is deleted upon process termination.

Description

Pegasus Imaging ThumbnailXpress 1.0 - Arbitrary File Deletion

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmlremotewindows

https://www.exploit-db.com/exploits/4487

View Code ZIP pw:eip

This exploit leverages an insecure method in Pegasus Imaging ThumbnailXpress ActiveX control to delete arbitrary files on the target system. The vulnerability is triggered by calling the CacheFile() method with a specified file path, which is deleted upon process termination.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: Pegasus Imaging ThumbnailXpress 1.0 (PegasusImaging.ActiveX.ThumbnailXpress1.dll v1.0.45.0)

No auth needed

Prerequisites: Target system with the vulnerable ActiveX control installed · User interaction to click the button

MITRE ATT&CK

T1485 - Data Destruction

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026