{"vulnerability": "CVE-2025-23211", "sightings": [{"uuid": "db5fc9a2-9311-4e29-97fe-0895c049e0b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23211", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113907475819949386", "content": "", "creation_timestamp": "2025-01-28T18:49:16.548674Z"}, {"uuid": "9e0f6511-786a-474b-a219-e46690af4e90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23211", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgt5riycrh2e", "content": "", "creation_timestamp": "2025-01-28T19:09:34.749532Z"}, {"uuid": "92fd69a3-fdaa-433a-8d8f-663787479275", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23211", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lgv6puy7uk2w", "content": "", "creation_timestamp": "2025-01-29T14:31:53.556326Z"}, {"uuid": "5b5eb856-c8ae-4aa0-ae00-de7c13c3968b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23211", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgsu4525zy2t", "content": "", "creation_timestamp": "2025-01-28T16:16:34.076615Z"}, {"uuid": "55eb29a4-2bb5-4e52-832e-04ab0a99e793", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23211", "type": "published-proof-of-concept", "source": "Telegram/VQDyMSiZHY5xvEKb4oih99dlPq4vD6lnAW-AaTy3B_GN-vo", "content": "", "creation_timestamp": "2025-01-28T17:02:25.000000Z"}, {"uuid": "d94104c3-e49e-4d19-8daa-c2f7dca212fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23211", "type": "seen", "source": "https://t.me/cvedetector/16612", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23211 - Tandoor Recipes Jinja2 SSTI Remote Command Execution\", \n  \"Content\": \"CVE ID : CVE-2025-23211 \nPublished : Jan. 28, 2025, 4:15 p.m. | 1\u00a0hour, 18\u00a0minutes ago \nDescription : Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. A Jinja2 SSTI vulnerability allows any user to execute commands on the server. In the case of the provided Docker Compose file as root. This vulnerability is fixed in 1.5.24. \nSeverity: 9.9 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-28T18:47:24.000000Z"}, {"uuid": "e4c973b3-b85f-4ff1-a585-e79b986afa24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23211", "type": "published-proof-of-concept", "source": "https://t.me/information_security_channel/53524", "content": "CVE-2025-23211: Tandoor Recipes Jinja2 SSTI to Remote Code Execution\nhttps://www.offsec.com/blog/cve-2025-23211/\n\nA criticial SSTI vulnerability was discovered in the open-source meal planning application Tandoor Recipes leading to a full system compromise. \nThe post CVE-2025-23211: Tandoor Recipes Jinja2 SSTI to Remote Code Execution (https://www.offsec.com/blog/cve-2025-23211/) appeared first on OffSec (https://www.offsec.com/).", "creation_timestamp": "2025-05-08T21:17:38.000000Z"}]}