Browse all 5 CVE security advisories affecting Recipes. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Recipes are primarily used for sharing cooking instructions and ingredient lists, serving as a core resource for culinary enthusiasts. Historically, these platforms have been susceptible to cross-site scripting (XSS) and remote code execution (RCE) vulnerabilities, often stemming from improper input validation and insecure file uploads. Privilege escalation flaws have also been reported, allowing unauthorized access to administrative functions. While no major public security incidents have been widely documented, the presence of five CVEs indicates ongoing security concerns, particularly around user-generated content handling and third-party integrations. These vulnerabilities highlight the need for robust sanitization practices and regular security assessments to protect user data and maintain platform integrity.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-0403 | Recipes 1.5.10 - Blind SSRF — RecipesCWE-918 | 6.5 | Medium | 2024-02-29 |
| CVE-2022-23074 | Recipes - Stored XSS in Name Parameter — recipesCWE-79 | 5.4 | - | 2022-06-21 |
| CVE-2022-23073 | Recipes - Stored XSS in Clipboard — recipesCWE-79 | 5.4 | - | 2022-06-21 |
| CVE-2022-23072 | Recipes - Stored XSS in Add to Cart — recipesCWE-79 | 5.4 | - | 2022-06-21 |
| CVE-2022-23071 | Recipes - SSRF on Import — recipesCWE-918 | 6.5 | - | 2022-06-19 |
This page lists every published CVE security advisory associated with Recipes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.