Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. A Jinja2 SSTI vulnerability allows any user to execute commands on the server. In the case of the provided Docker Compose file as root. This vulnerability is fixed in 1.5.24.
The vulnerability results from unsafe processing of user input by the Jinja2 template engine without proper sanitization (CWE-1336, CWE-94). An attacker can inject a malicious payload in the form of template expressions, which will be interpreted and executed on the server side. Since the deployment based on the provided Docker Compose file runs the application as root, code execution takes place with the highest privileges in the container.
An attacker with basic access to the application (any user account) can execute arbitrary system commands on the server, leading to complete takeover of the environment — including data reading and modification, container compromise, and potential lateral movement in the infrastructure.
Tandoor Recipes should be updated to version 1.5.24 or newer as soon as possible, in which the vulnerability has been removed (commit e6087d5129cc9d0c24278948872377e66c2a2c20). Additionally, it is recommended to review container configuration to ensure application processes run without root privileges.
Tandoor Recipes in versions prior to 1.5.24, particularly deployments using the Docker Compose file provided by the vendor
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HTandoor Recipes
APPTandoor< 1.5.24
Related vulnerabilities
Brak ograniczenia prób logowania przez Basic Auth w Tandoor Recipes
Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Prior to ...
Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Prior to ...
Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Prior to ...
Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. In versio...