Lucene search
K

7 matches found

NVD
NVD
added 2026/03/26 7:17 p.m.5 views

CVE-2026-33149

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Versions up to and including 2.5.3 set ALLOWEDHOSTS = '' by default, which causes Django to accept any value in the HTTP Host header without validation. The application uses request.buildabsoluteu...

8.1CVSS0.00304EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/26 6:53 p.m.3 views

CVE-2026-33149

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Versions up to and including 2.5.3 set ALLOWEDHOSTS = '' by default, which causes Django to accept any value in the HTTP Host header without validation. The application uses request.buildabsoluteu...

8.1CVSS5.8AI score0.00304EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/03/26 6:53 p.m.26 views

CVE-2026-33149 Tandoor Recipes Vulnerable to Host Header Injection

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Versions up to and including 2.5.3 set ALLOWEDHOSTS = '' by default, which causes Django to accept any value in the HTTP Host header without validation. The application uses request.buildabsoluteu...

8.1CVSS0.00304EPSS
Exploits1References1
OSV
OSV
added 2026/03/26 6:53 p.m.7 views

CVE-2026-33149 Tandoor Recipes Vulnerable to Host Header Injection

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Versions up to and including 2.5.3 set ALLOWEDHOSTS = '' by default, which causes Django to accept any value in the HTTP Host header without validation. The application uses request.buildabsoluteu...

8.1CVSS5.8AI score0.00304EPSS
Exploits1References3
CVE
CVE
added 2026/03/26 6:53 p.m.11 views

CVE-2026-33149

Tandoor Recipes

8.1CVSS5.8AI score0.00304EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/26 6:53 p.m.5 views

CVE-2026-33149 Tandoor Recipes Vulnerable to Host Header Injection

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Versions up to and including 2.5.3 set ALLOWEDHOSTS = '' by default, which causes Django to accept any value in the HTTP Host header without validation. The application uses request.buildabsoluteu...

8.1CVSS5.9AI score0.00304EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.7 views

PT-2026-28470

Name of the Vulnerable Software and Affected Versions Tandoor Recipes versions up to and including 2.5.3 Description Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Versions up to and including 2.5.3 set ALLOWED HOSTS = '' by default, which...

8.1CVSS5.9AI score0.00304EPSS
Exploits1References4
Rows per page
Query Builder