EIP-2026-119345

PRE-CVE

actiTIME 2015.2 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-119345. PoCs published by LiquidWorm.

AI-analyzed exploit summary The document details multiple vulnerabilities in actiTIME 2015.2, including Open Redirect, HTTP Response Splitting, and Unquoted Service Path Elevation of Privilege. It provides specific exploit URLs and technical details about the affected software and environment.

Description

actiTIME 2015.2 - Multiple Vulnerabilities

Exploits (1)

exploitdb WRITEUP

by LiquidWorm · textwebappswindows

https://www.exploit-db.com/exploits/38602

View Code ZIP pw:eip

The document details multiple vulnerabilities in actiTIME 2015.2, including Open Redirect, HTTP Response Splitting, and Unquoted Service Path Elevation of Privilege. It provides specific exploit URLs and technical details about the affected software and environment.

Classification

Writeup 95%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: actiTIME 2015.2 (Small Team Edition)

No auth needed

Prerequisites: Access to the target application · Network connectivity to the target server

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026