CVE-2026-33149 | TandoorRecipes recipes up to 2.5.3 Host request.build_absolute_uri http headers for scripting syntax (GHSA-x636-4jx6-xc4w)

A vulnerability labeled as problematic has been found in TandoorRecipes recipes up to 2.5.3. The impacted element is the function request.build_absolute_uri of the component Host Handler. Executing a manipulation can lead to improper neutralization of http headers for scripting syntax.

The identification of this vulnerability is CVE-2026-33149. The attack may be launched remotely. There is no exploit available.VulDB Recent EntriesRead More