CVSS: 8.7EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23213 – Tandoor Recipes - Stored XSS through Unrestricted File Upload
https://notcve.org/view.php?id=CVE-2025-23213
28 Jan 2025 — Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The file upload feature allows to upload arbitrary files, including html and svg. Both can contain malicious content (XSS Payloads). This vulnerability is fixed in 1.5.28. • https://github.com/TandoorRecipes/recipes/commit/3e37d11c6a3841a00eb27670d1d003f1a713e1cf • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 7.7EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23212 – Tandoor Recipes - Local file disclosure - Users can read the content of any file on the server
https://notcve.org/view.php?id=CVE-2025-23212
28 Jan 2025 — Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. The external storage feature allows any user to enumerate the name and content of files on the server. This vulnerability is fixed in 1.5.28. • https://github.com/TandoorRecipes/recipes/commit/36e83a9d0108ac56b9538b45ead57efc8b97c5ff • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.9EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23211 – Tandoor Recipes - SSTI - Remote Code Execution
https://notcve.org/view.php?id=CVE-2025-23211
28 Jan 2025 — Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. A Jinja2 SSTI vulnerability allows any user to execute commands on the server. In the case of the provided Docker Compose file as root. This vulnerability is fixed in 1.5.24. • https://github.com/TandoorRecipes/recipes/blob/4f9bff20c858180d0f7376de443a9fe4c123a50c/cookbook/helper/template_helper.py#L95 • CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine •