CVE-2025-23211: Tandoor Recipes Jinja2 SSTI to Remote Code Execution

2025-05-08 19:05

A criticial SSTI vulnerability was discovered in the open-source meal planning application Tandoor Recipes leading to a full system compromise.

The post CVE-2025-23211: Tandoor Recipes Jinja2 SSTI to Remote Code Execution appeared first on OffSec.

This article has been indexed from OffSec

Read the original article:

CVE-2025-23211: Tandoor Recipes Jinja2 SSTI to Remote Code Execution

Related

← Smart home devices used to monitor domestic workers raise safety concerns

PowerSchool paid a hacker’s ransom, but now schools say they are being extorted →