CVE-2025-50567

Saurus CMS Community Edition 4.7.1 contains a vulnerability in the custom DB::prepare() function, which uses preg_replace() with the deprecated /e (eval) modifier to interpolate SQL query parameters. This leads to injection of user-controlled SQL statements, potentially leading to arbitrary PHP code execution.

CVSS v3 10.0 CRITICAL

10.0^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
http://saurus.com
http://saurused.com
https://github.com/rahulhoysala/security-research/blob/main/CVE-2025-50567.md
https://in.linkedin.com/in/rahul-hoysala-221a26341

Configurations

No configuration.

History

20 Aug 2025, 14:40

Type	Values Removed	Values Added
Summary		(es) Saurus CMS Community Edition 4.7.1 contiene una vulnerabilidad en la función personalizada DB::prepare(), que utiliza preg_replace() con el modificador obsoleto /e (eval) para interpolar parámetros de consulta SQL. Esto provoca la inyección de sentencias SQL controladas por el usuario, lo que podría provocar la ejecución de código PHP arbitrario.

19 Aug 2025, 14:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-19 14:15

Updated : 2025-08-20 14:40

NVD link : CVE-2025-50567

Mitre link : CVE-2025-50567

CVE.ORG link : CVE-2025-50567

JSON object : View

Products Affected

No product.

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

CWE-94

Improper Control of Generation of Code ('Code Injection')

10.0 /10