Lucene search
+L

406 matches found

Vulnrichment
Vulnrichment
added 2025/01/28 3:24 p.m.8 views

CVE-2025-23211 Tandoor Recipes - SSTI - Remote Code Execution

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. A Jinja2 SSTI vulnerability allows any user to execute commands on the server. In the case of the provided Docker Compose file as root. This vulnerability is fixed in 1.5.24...

9.9CVSS9.6AI score0.03464EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/01/28 3:24 p.m.27 views

CVE-2025-23211 Tandoor Recipes - SSTI - Remote Code Execution

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. A Jinja2 SSTI vulnerability allows any user to execute commands on the server. In the case of the provided Docker Compose file as root. This vulnerability is fixed in 1.5.24...

9.9CVSS0.03464EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/01/28 12:0 a.m.6 views

PT-2025-4850

Name of the Vulnerable Software and Affected Versions: Tandoor Recipes versions prior to 1.5.24 Description: The issue is related to a Jinja2 SSTI vulnerability that allows any user to execute commands on the server, potentially with root privileges in the case of the provided Docker Compose file...

9.9CVSS5.8AI score0.03464EPSS
Exploits1References12
CVE
CVE
added 2024/12/23 5:23 p.m.61 views

CVE-2024-56363

APTRS (Automated Penetration Testing Reporting System) v1.0 is affected by a server-side template injection in Jinja2 due to improper sanitization of user input passed from ckeditor fields. The vulnerability allows an attacker to inject Jinja2 syntax (e.g., {{ config }}, {{ self.class.mro[1].subc...

7.8CVSS7.9AI score0.00334EPSS
Exploits0References2
OSV
OSV
added 2024/12/12 3:46 p.m.18 views

GO-2024-3324 SiYuan has an SSTI via /api/template/renderSprig in github.com/siyuan-note/siyuan/kernel

SiYuan has an SSTI via /api/template/renderSprig in github.com/siyuan-note/siyuan/kernel...

9.8CVSS6.3AI score0.00602EPSS
Exploits0References2
OSV
OSV
added 2024/12/11 6:44 p.m.12 views

GHSA-4PJC-PWGQ-Q9JP SiYuan has an SSTI via /api/template/renderSprig

Summary Siyuan's /api/template/renderSprig endpoint is vulnerable to Server-Side Template Injection SSTI through the Sprig template engine. Although the engine has limitations, it allows attackers to access environment variables Impact Information leakage...

6.9CVSS6.5AI score0.00602EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/12/11 6:44 p.m.30 views

SiYuan has an SSTI via /api/template/renderSprig

Summary Siyuan's /api/template/renderSprig endpoint is vulnerable to Server-Side Template Injection SSTI through the Sprig template engine. Although the engine has limitations, it allows attackers to access environment variables Impact Information leakage...

9.8CVSS7AI score0.00602EPSS
Exploits0References5Affected Software1
Huntr
Huntr
added 2024/12/03 4:27 a.m.6 views

AutoGPT SSTI Vulnerability Leading to Remote Code Execution (RCE)

Summary AutoGPT, an open-source AI tool that automates task execution, is vulnerable to a Server-Side Template Injection SSTI that could lead to arbitrary command execution. The vulnerability arises from the improper handling of user-supplied format strings in the AgentOutputBlock implementation,...

8.8CVSS9.1AI score0.01522EPSS
Exploits1
Github Security Blog
Github Security Blog
added 2024/12/02 9:36 p.m.20 views

Backstage Scaffolder plugin vulnerable to Server-Side Request Forgery

Impact A vulnerability is identified in Backstage Scaffolder template functionality where Server-Side Template Injection SSTI can be exploited to perform Git config injection. The vulnerability allows an attacker to capture privileged git tokens used by the Backstage Scaffolder plugin. With these...

5.4CVSS7.2AI score0.00368EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/11/29 7:15 p.m.36 views

CVE-2024-53983

The Backstage Scaffolder plugin Houses types and utilities for building scaffolder-related modules. A vulnerability is identified in Backstage Scaffolder template functionality where Server-Side Template Injection SSTI can be exploited to perform Git config injection. The vulnerability allows an...

5.4CVSS0.00368EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/29 6:53 p.m.10 views

CVE-2024-53983 Server-side request forgery in Backstage Scaffolder plugin

The Backstage Scaffolder plugin Houses types and utilities for building scaffolder-related modules. A vulnerability is identified in Backstage Scaffolder template functionality where Server-Side Template Injection SSTI can be exploited to perform Git config injection. The vulnerability allows an...

5.4CVSS7.3AI score0.00368EPSS
Exploits0References2
CVE
CVE
added 2024/11/29 6:53 p.m.56 views

CVE-2024-53983

The CVE concerns Backstage Scaffolder template handling where Server-Side Template Injection (SSTI) can be abused to inject Git config and capture privileged Git tokens used by the Backstage Scaffolder plugin. This enables unauthorized access to Git resources, with a medium impact per the Backsta...

5.4CVSS5.9AI score0.00368EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/29 6:53 p.m.40 views

CVE-2024-53983 Server-side request forgery in Backstage Scaffolder plugin

The Backstage Scaffolder plugin Houses types and utilities for building scaffolder-related modules. A vulnerability is identified in Backstage Scaffolder template functionality where Server-Side Template Injection SSTI can be exploited to perform Git config injection. The vulnerability allows an...

5.4CVSS0.00368EPSS
Exploits0References2
OSV
OSV
added 2024/11/29 6:53 p.m.6 views

CVE-2024-53983 Server-side request forgery in Backstage Scaffolder plugin

The Backstage Scaffolder plugin Houses types and utilities for building scaffolder-related modules. A vulnerability is identified in Backstage Scaffolder template functionality where Server-Side Template Injection SSTI can be exploited to perform Git config injection. The vulnerability allows an...

5.4CVSS7.1AI score0.00368EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/11/18 8:41 a.m.21 views

CVE-2024-48962 Apache OFBiz: Bypass SameSite restrictions with target redirection using URL parameters (SSTI and CSRF leading to RCE)

Improper Control of Generation of Code 'Code Injection', Cross-Site Request Forgery CSRF, : Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 18.12.17. Users are recommended to upgrade to version 18.12.17,...

8.9CVSS7AI score0.00613EPSS
Exploits0References4
NVD
NVD
added 2024/11/13 5:15 p.m.25 views

CVE-2024-52291

Craft is a content management system CMS. A vulnerability in CraftCMS allows an attacker to bypass local file system validation by utilizing a double file:// scheme e.g., file://file:////. This enables the attacker to specify sensitive folders as the file system, leading to potential file...

8.4CVSS0.01138EPSS
Exploits1References1
NVD
NVD
added 2024/11/13 4:15 p.m.40 views

CVE-2024-52293

Craft is a content management system CMS. Prior to 4.12.2 and 5.4.3, Craft is missing normalizePath in the function FileHelper::absolutePath could lead to Remote Code Execution on the server via twig SSTI. This is a sequel to CVE-2023-40035. This vulnerability is fixed in 4.12.2 and 5.4.3...

7.2CVSS0.01308EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/11/13 4:12 p.m.16 views

CVE-2024-52291 Craft has a Local File System Validation Bypass Leading to File Overwrite, Sensitive File Access, and Potential Code Execution

Craft is a content management system CMS. A vulnerability in CraftCMS allows an attacker to bypass local file system validation by utilizing a double file:// scheme e.g., file://file:////. This enables the attacker to specify sensitive folders as the file system, leading to potential file...

8.4CVSS8.6AI score0.01138EPSS
Exploits1References1
OSV
OSV
added 2024/11/13 4:12 p.m.16 views

CVE-2024-52291 Craft has a Local File System Validation Bypass Leading to File Overwrite, Sensitive File Access, and Potential Code Execution

Craft is a content management system CMS. A vulnerability in CraftCMS allows an attacker to bypass local file system validation by utilizing a double file:// scheme e.g., file://file:////. This enables the attacker to specify sensitive folders as the file system, leading to potential file...

8.4CVSS7.5AI score0.01138EPSS
Exploits1References3
CVE
CVE
added 2024/11/13 4:4 p.m.81 views

CVE-2024-52293

Craft CMS prior to 4.12.2 and 5.4.3 is vulnerable due to missing normalizePath in FileHelper::absolutePath, enabling potential Remote Code Execution via Twig SSTI. This is a sequel to CVE-2023-40035. The issue is fixed in Craft 4.12.2 and 5.4.3. Affected versions should upgrade to the specified f...

7.2CVSS6.9AI score0.01308EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder