CVE-2007-1725

IceBB 1.0-rc5 - Authenticated SQL Injection via Avatar Upload Filename

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2007-1725. PoCs published by Hessam-x.

AI-analyzed exploit summary This exploit targets IceBB 1.0-rc5 by leveraging an avatar upload vulnerability to achieve remote code execution. It authenticates as a user, uploads a malicious PHP file disguised as an avatar, and then executes arbitrary commands via a web shell.

Description

SQL injection vulnerability in index.php in IceBB 1.0-rc5 allows remote authenticated users to execute arbitrary SQL commands via the filename of an uploaded file to the avatar function, as demonstrated by setting admin privileges.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Hessam-x · perlwebappsphp
https://www.exploit-db.com/exploits/3581

This exploit targets IceBB 1.0-rc5 by leveraging an avatar upload vulnerability to achieve remote code execution. It authenticates as a user, uploads a malicious PHP file disguised as an avatar, and then executes arbitrary commands via a web shell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: IceBB 1.0-rc5
Auth required
Prerequisites: Valid user credentials · Avatar upload functionality enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Hessam-x · perlwebappsphp
https://www.exploit-db.com/exploits/3580

This exploit targets IceBB 1.0-rc5 by leveraging an avatar upload vulnerability to inject malicious input, escalating a regular user to admin privileges. It requires authentication and specific server configurations (e.g., magic_quotes_gpc = Off).

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: IceBB 1.0-rc5
Auth required
Prerequisites: Valid user credentials · magic_quotes_gpc disabled on the server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/24644
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1116
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/23158
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3581
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/34497
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3580
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/33240

Scores

EPSS 0.0180
EPSS Percentile 75.7%

Details

Status published
Products (1)
icebb/icebb 1.0_rc_5
Published Mar 28, 2007
Tracked Since Feb 18, 2026