CVE-2025-50567 – Saurus CMS SQL Injection

August 19, 2025

CVE ID : CVE-2025-50567

Published : Aug. 19, 2025, 2:15 p.m. | 10 hours, 37 minutes ago

Description : Saurus CMS Community Edition 4.7.1 contains a vulnerability in the custom DB::prepare() function, which uses preg_replace() with the deprecated /e (eval) modifier to interpolate SQL query parameters. This leads to injection of user-controlled SQL statements, potentially leading to arbitrary PHP code execution.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-54336 – Plesk Obsidian Authentication Bypass Vulnerability

Next Article CVE-2025-4046 – Lexmark Cloud Services Badge Management Authorization Bypass

Highlights

Multiple Vulnerabilities in NETSCOUT nGeniusONE Threaten Infrastructure Visibility Platforms

April 28, 2025

Multiple Vulnerabilities in NETSCOUT nGeniusONE Threaten Infrastructure Visibility Platforms

NETSCOUT has issued a advisory addressing a series of security vulnerabilities in its flagship infrastructure monitoring platform, nGeniusONE.
NETSCOUT’s nGeniusONE solution is a powerful tool, provid …
Read more

Published Date:
Apr 28, 2025 (2 hours, 54 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2025-32986

CVE-2025-32985

CVE-2025-32984

CVE-2025-32983

CVE-2025-32982

CVE-2025-32981

CVE-2025-32980

CVE-2025-32979

CVE-2023-43791

Stop writing tests: Automate fully with Generative AI

Opsera’s Codeglide.ai lets developers easily turn legacy APIs into MCP servers

Black Duck Security GitHub App, NuGet MCP Server preview, and more – Daily News Digest

10 Ways Node.js Development Boosts AI & Real-Time Data (2025-2026 Edition)

This new Coros watch has 3 weeks of battery life and tracks way more – even fly fishing

5 ways automation can speed up your daily workflow – and implementation is easy

This new C-suite role is more important than ever in the AI era – here’s why

iPhone users may finally be able to send encrypted texts to Android friends with iOS 26

Creating Dynamic Real-Time Features with Laravel Broadcasting

Creating Dynamic Real-Time Features with Laravel Broadcasting

Understanding Tailwind CSS Safelist: Keep Your Dynamic Classes Safe!

Sitecore’s Content SDK: Everything You Need to Know

Why GNOME Replaced Eye of GNOME with Loupe as the Default Image Viewer

Why GNOME Replaced Eye of GNOME with Loupe as the Default Image Viewer

Microsoft admits it broke “Reset this PC” in Windows 11 23H2 KB5063875, Windows 10 KB5063709

How to Fix “EA AntiCheat Has Detected an Incompatible Driver” on Windows 11?

CVE-2025-50567 – Saurus CMS SQL Injection

Investors beware: AI-powered financial scams swamp social media

PyPI Blocks 1,800 Expired-Domain Emails to Prevent Account Takeovers and Supply Chain Attacks

Microsoft Edge now lets IT quietly share secure passwords with employees

Surprises and trends from this year’s Design Tools Survey results

Cauldron reads articles stored in Pocket

Building a Multi-Tenant SaaS Application with Next.js (Backend Integration)

Multiple Vulnerabilities in NETSCOUT nGeniusONE Threaten Infrastructure Visibility Platforms

Secure distributed logging in scalable multi-account deployments using Amazon Bedrock and LangChain

NVIDIA Riva Vulnerabilities Leave AI-Powered Speech and Translation Services at Risk

How To Build A Business Case To Promote Accessibility In Your B2B Products

CVE-2025-50567 – Saurus CMS SQL Injection

Related Posts