CVE-2007-1254

Connectix Boards <0.7 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1254. PoCs published by DarkFig.

AI-analyzed exploit summary This exploit targets Connectix Boards <= 0.7, leveraging SQL injection for privilege escalation and arbitrary file upload for remote code execution. It authenticates, injects malicious SQL to escalate privileges, and uploads a fake JPG containing PHP code to achieve RCE.

Description

SQL injection vulnerability in part.userprofile.php in Connectix Boards 0.7 and earlier allows remote authenticated users to execute arbitrary SQL commands and obtain privileges via the p_skin parameter to index.php.

Exploits (1)

exploitdb WORKING POC VERIFIED
by DarkFig · phpwebappsphp
https://www.exploit-db.com/exploits/3352

This exploit targets Connectix Boards <= 0.7, leveraging SQL injection for privilege escalation and arbitrary file upload for remote code execution. It authenticates, injects malicious SQL to escalate privileges, and uploads a fake JPG containing PHP code to achieve RCE.

Classification
Working Poc 95%
Attack Type
Rce | Sqli | Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: Connectix Boards <= 0.7
Auth required
Prerequisites: Valid user credentials · Access to the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24255
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2364
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/460947/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/33537
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3352

Scores

EPSS 0.0095
EPSS Percentile 56.4%

Details

Status published
Products (14)
connectix/connectix_boards 0.4
connectix/connectix_boards 0.4.1
connectix/connectix_boards 0.4.2
connectix/connectix_boards 0.4.3
connectix/connectix_boards 0.4.4
connectix/connectix_boards 0.5
connectix/connectix_boards 0.5.1
connectix/connectix_boards 0.5.2
connectix/connectix_boards 0.5.3
connectix/connectix_boards 0.5.4
... and 4 more
Published Mar 03, 2007
Tracked Since Feb 18, 2026