LaRecipe is an application that allows users to create documentation with Markdown inside a Laravel app. Versions prior to 2.8.1 are vulnerable to Server-Side Template Injection (SSTI), which could potentially lead to Remote Code Execution (RCE) in vulnerable configurations. Attackers could execute arbitrary commands on the server, access sensitive environment variables, and/or escalate access depending on server configuration. Users are strongly advised to upgrade to version v2.8.1 or later to receive a patch.
The vulnerability classified as CWE-1336 involves improper neutralization of syntax used in server-side templates. An attacker can inject a malicious payload into the template rendering mechanism, which in vulnerable configurations results in execution of arbitrary server-side code. The attack does not require authentication, user interaction, or special privileges, and its scope extends beyond the attacked application (scope changed).
An attacker can execute arbitrary system commands on the server, gain access to sensitive environment variables, and escalate access depending on server configuration, which may lead to complete system takeover.
LaRecipe should be updated to version 2.8.1 or later, which contains the appropriate patch. Details are available in the vendor references and the GHSA-jv7x-xhv2-p5v2 security advisory.
LaRecipe in versions prior to 2.8.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H