CVE-2025-50567

Saurus CMS Community Edition 4.7.1 contains a vulnerability in the custom DB::prepare() function, which uses preg_replace() with the deprecated /e (eval) modifier to interpolate SQL query parameters. This leads to injection of user-controlled SQL statements, potentially leading to arbitrary PHP code execution.

CVSS v3 10.0 CRITICAL

10.0^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
http://saurus.com
http://saurused.com
https://github.com/rahulhoysala/security-research/blob/main/CVE-2025-50567.md
https://in.linkedin.com/in/rahul-hoysala-221a26341

Configurations

No configuration.

History

No history.

Information

Published : 2025-08-19 14:15

Updated : 2025-08-20 14:40

NVD link : CVE-2025-50567

Mitre link : CVE-2025-50567

CVE.ORG link : CVE-2025-50567

JSON object : View

Products Affected

No product.

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

CWE-94

Improper Control of Generation of Code ('Code Injection')

10.0 /10