CVE-2025-67510

Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.

CVSS v3 9.4 CRITICAL

9.4^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.5

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/neuron-core/neuron-ai/commit/44bab85d92bf162898ee48d0bcef6ba0d29b59c9
https://github.com/neuron-core/neuron-ai/releases/tag/2.8.12
https://github.com/neuron-core/neuron-ai/security/advisories/GHSA-898v-775g-777c

Configurations

No configuration.

History

10 Dec 2025, 23:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-12-10 23:15

Updated : 2025-12-12 15:18

NVD link : CVE-2025-67510

Mitre link : CVE-2025-67510

CVE.ORG link : CVE-2025-67510

JSON object : View

Products Affected

No product.

CWE

CWE-250

Execution with Unnecessary Privileges

CWE-284

Improper Access Control

9.4 /10