Lucene search
K

5 matches found

VulnCheck KEV
VulnCheck KEV
added 2025/09/22 12:0 a.m.15 views

VulnCheck KEV: CVE-2025-51591

A Server-Side Request Forgery SSRF in JGM Pandoc v3.6.4 allows attackers to gain access to and compromise the whole infrastructure via injecting a crafted iframe. Note: Some users have stated that Pandoc by default can retrieve and parse untrusted HTML content which can enable SSRF vulnerabilitie...

9.8CVSS5.8AI score0.11276EPSS
In wildExploits5References3
Circl
Circl
added 2025/07/11 1:45 p.m.18 views

CVE-2025-51591

creationtimestamp| type| source ---|---|--- 2025-07-11 13:45:26+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114834900611046360 2025-09-24 05:15:00+00:00| seen| https://thehackernews.com/2025/09/hackers-exploit-pandoc-cve-2025-51591.html 2025-09-24 07:24:27+00:00| exploited|...

3.7CVSS6AI score0.00609EPSS
Exploits1References16
CVE
CVE
added 2025/07/11 12:0 a.m.69 views

CVE-2025-51591

The CVE-2025-51591 SSRF flaw affects Pandoc, reportedly in v3.6.4, allowing an attacker to access the internal infrastructure via a crafted iframe injection. Public sources describe that Pandoc can retrieve and parse untrusted HTML content, enabling SSRF, with mitigations including using the --sa...

3.7CVSS6.6AI score0.00609EPSS
In wildExploits1References11
Vulnrichment
Vulnrichment
added 2025/07/11 12:0 a.m.2 views

CVE-2025-51591

A Server-Side Request Forgery SSRF in JGM Pandoc v3.6.4 allows attackers to gain access to and compromise the whole infrastructure via injecting a crafted iframe. Note: Some users have stated that Pandoc by default can retrieve and parse untrusted HTML content which can enable SSRF vulnerabilitie...

6.6AI score0.00609EPSS
Exploits1References7
OSV
OSV
added 2025/07/11 12:0 a.m.3 views

CVE-2025-51591

A Server-Side Request Forgery SSRF in JGM Pandoc v3.6.4 allows attackers to gain access to and compromise the whole infrastructure via injecting a crafted iframe. Note: Some users have stated that Pandoc by default can retrieve and parse untrusted HTML content which can enable SSRF vulnerabilitie...

3.7CVSS7AI score0.00609EPSS
Exploits1References13
Rows per page
Query Builder