CNNVD-202507-1931 Information
CNNVD ID
CNNVD-202507-1931
Related CVE
- CNNVD Published: 2025-07-14
Description (Chinese)
LaRecipe是Saleem Hadad سليم حداد个人开发者的一个使用MarkDown为Laravel应用程序编写和发布文档的软件。 LaRecipe 2.8.1之前版本存在安全漏洞,该漏洞源于服务器端模板注入,可能导致远程代码执行。
Description (English)
LaRecipe, a personal developer of Saleem Hadad, uses Mark Down to write and publish documents for the Laravel application. There was a security loophole in the previous version of LaRecipe 2.8.1, which originated from the injection of server-end templates, which could lead to remote code implementation.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
Live Support
Published
2025-07-14
Last Modified
2026-02-24
References
https://github.com/saleem-hadad/larecipe/security/advisories/GHSA-jv7x-xhv2-p5v2 https://github.com/saleem-hadad/larecipe/pull/390 https://github.com/saleem-hadad/larecipe/commit/c1d0d56889655ce5f2645db5acf0e78d5fc3b36b https://access.redhat.com/security/cve/cve-2025-53833
Patch
https://github.com/saleem-hadad/larecipe/releases
Share on: