Dolibarr has an Authenticated Remote Code Execution via eval() injection...

8.6 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Dolibarr is an enterprise resource planning (ERP) and customer relationship management (CRM) software package. Versions 22.0.2 and earlier contains an authenticated remote code execution vulnerability in the user extrafields functionality. User-controlled input from the "computed value" field is passed to PHP's `eval()` function without adequate sanitization, allowing authenticated administrators to execute arbitrary PHP code on the server. As of time of publication, no patched versions are available.

AI Analysis

Authenticated remote code execution vulnerability in the user extrafields functionality via eval() injection

Basic Information

ID CVE-2025-67486

Source GitHub_M

Published May 8, 2026 at 14:21

Affected Product

Vendor Dolibarr

Product dolibarr

Version <= 22.0.2

Affected Versions Dolibarr dolibarr <= 22.0.2

CWE Classification

CWE-74

AI Assessment

AI Score 8.6 / 10

AI Severity High

Vendor Dolibarr

Product Dolibarr ERP/CRM

Version 22.0.2 and earlier

References

{
    "lastseen": "",
    "description": "Dolibarr is an enterprise resource planning (ERP) and customer relationship management (CRM) software package. Versions 22.0.2 and earlier contains an authenticated remote code execution vulnerability in the user extrafields functionality. User-controlled input from the \"computed value\" field is passed to PHP's `eval()` function without adequate sanitization, allowing authenticated administrators to execute arbitrary PHP code on the server. As of time of publication, no patched versions are available.",
    "published": "2026-05-08T14:21:55.693Z",
    "modified": "2026-05-08T14:21:55.693Z",
    "type": "cve",
    "title": "Dolibarr has an Authenticated Remote Code Execution via eval() injection in user extrafields",
    "source": "GitHub_M",
    "references": "https://medium.com/@abduxalilovjavohir/dolibarr-erp-authenticated-remote-code-execution-via-eval-injection-in-user-extrafields-dfc305d0118e\nhttps://github.com/Dolibarr/dolibarr/blob/22.0.2/htdocs/core/lib/functions.lib.php",
    "id": "CVE-2025-67486",
    "bulletinFamily": "",
    "cwe": [
        "CWE-74"
    ],
    "cvelist": null,
    "sourceData": "Dolibarr dolibarr <= 22.0.2",
    "sourceHref": "",
    "cvss": {
        "score": 8.6,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "dolibarr",
    "version": "<= 22.0.2",
    "vendor": "Dolibarr",
    "ai_description": "Authenticated remote code execution vulnerability in the user extrafields functionality via eval() injection",
    "ai_severity": "High",
    "ai_vendor": "Dolibarr",
    "ai_product": "Dolibarr ERP/CRM",
    "ai_version": "22.0.2 and earlier",
    "ai_score": 8.6
}

Dolibarr has an Authenticated Remote Code Execution via eval() injection in user extrafields_CVE-2025-67486