1. Home
  2. Vulnerabilities
  3. CVE-2025-51591
6.5
MEDIUM CVSS 3.1
CVE-2025-51591
Pandoc SSRF Vulnerability
Description

A Server-Side Request Forgery (SSRF) in JGM Pandoc v3.6.4 allows attackers to gain access to and compromise the whole infrastructure via injecting a crafted iframe.

INFO

Published Date :

July 11, 2025, 2:15 p.m.

Last Modified :

Oct. 7, 2025, 4:15 p.m.

Remotely Exploit :

Yes !

Source :

[email protected]
Affected Products

The following products are affected by CVE-2025-51591 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

No affected product recoded yet

: Total Affected Vendor : 0 | Products : 0
CVSS Scores
The Common Vulnerability Scoring System is a standardized framework for assessing the severity of vulnerabilities in software and systems. We collect and displays CVSS scores from various sources for each CVE.
Score Version Severity Vector Exploitability Score Impact Score Source
CVSS 3.1 MEDIUM 134c704f-9b21-4f2e-91b3-4a467353bcc0
CVSS 3.1 LOW 134c704f-9b21-4f2e-91b3-4a467353bcc0
Solution
Update JGM Pandoc to a version that addresses the SSRF vulnerability.
  • Update JGM Pandoc to the latest version.
  • Review and sanitize all user-provided URLs.
  • Implement network egress filtering.
Public PoC/Exploit Available at Github

CVE-2025-51591 has a 2 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2025-51591.

URL Resource
http://jgm.com
http://pandoc.com
https://github.com/RealestName/Vulnerability-Research/tree/main/CVE-2025-51591
https://github.com/jgm/pandoc/commit/67edf7ce7cd3563a180ae44bd122b012e22364f8
https://github.com/jgm/pandoc/issues/10682
https://pandoc.org
https://www.wiz.io/blog/imds-anomaly-hunting-zero-day
not-applicable:http://jgm.com/
not-applicable:http://pandoc.com/
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2025-51591 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2025-51591 weaknesses.

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Profile Photo
Malayke/CVE-2025-51591-Pandoc-SSRF-POC

CVE-2025-51591 Pandoc SSRF vulnerability Proof of Concept

Updated: 1 week, 5 days ago
0 stars 0 fork 0 watcher
Born at : Sept. 25, 2025, 6:29 a.m. This repo has been linked 1 different CVEs too.
Profile Photo
nomi-sec/PoC-in-GitHub

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

security cve exploit poc vulnerability

Updated: 2 days ago
7360 stars 1212 fork 1212 watcher
Born at : Dec. 8, 2019, 1:03 p.m. This repo has been linked 832 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2025-51591 vulnerability anywhere in the article.

  • The Hacker News
Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks

Oct 06, 2025Ravie LakshmananVulnerability / Threat Intelligence Oracle has released an emergency update to address a critical security flaw in its E-Business Suite that it said has been exploited in ... Read more

Published Date: Oct 06, 2025 (4 weeks ago)
  • The Hacker News
Scanning Activity on Palo Alto Networks Portals Jump 500% in One Day

Oct 04, 2025Ravie LakshmananVulnerability / Network Security Threat intelligence firm GreyNoise disclosed on Friday that it has observed a spike in scanning activity targeting Palo Alto Networks log ... Read more

Published Date: Oct 04, 2025 (4 weeks, 2 days ago)
  • The Hacker News
CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild

Oct 03, 2025Ravie LakshmananVulnerability / IoT Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a high-severity security flaw impacting Smartbedded Meteob ... Read more

Published Date: Oct 03, 2025 (1 month ago)
  • The Hacker News
ThreatsDay Bulletin: CarPlay Exploit, BYOVD Tactics, SQL C2 Attacks, iCloud Backdoor Demand & More

From unpatched cars to hijacked clouds, this week's Threatsday headlines remind us of one thing — no corner of technology is safe. Attackers are scanning firewalls for critical flaws, bending vulnerab ... Read more

Published Date: Oct 02, 2025 (1 month ago)
  • The Hacker News
OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps

Oct 01, 2025Ravie LakshmananVulnerability / API Security A high-severity security flaw has been disclosed in the One Identity OneLogin Identity and Access Management (IAM) solution that, if successf ... Read more

Published Date: Oct 01, 2025 (1 month ago)
  • The Hacker News
Red Hat OpenShift AI Flaw Exposes Hybrid Cloud Infrastructure to Full Takeover

Oct 01, 2025Ravie LakshmananAI Security / Cloud Security A severe security flaw has been disclosed in the Red Hat OpenShift AI service that could allow attackers to escalate privileges and take cont ... Read more

Published Date: Oct 01, 2025 (1 month ago)
  • The Hacker News
Hackers Exploit Milesight Routers to Send Phishing SMS to European Users

Oct 01, 2025Ravie LakshmananVulnerability / Malware Unknown threat actors are abusing Milesight industrial cellular routers to send SMS messages as part of a smishing campaign targeting users in Eur ... Read more

Published Date: Oct 01, 2025 (1 month ago)
  • The Hacker News
$50 Battering RAM Attack Breaks Intel and AMD Cloud Security Protections

A group of academics from KU Leuven and the University of Birmingham has demonstrated a new vulnerability called Battering RAM to bypass the latest defenses on Intel and AMD cloud processors. "We buil ... Read more

Published Date: Sep 30, 2025 (1 month ago)
  • The Hacker News
CISA Sounds Alarm on Critical Sudo Flaw Actively Exploited in Linux and Unix Systems

Sep 30, 2025Ravie LakshmananVulnerability / Linux The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a critical security flaw impacting the Sudo command-line utility fo ... Read more

Published Date: Sep 30, 2025 (1 month ago)
  • CybersecurityNews
Hackers Exploits IMDS Service to Gain Initial Access to a Cloud Environment

Threat actors were manipulating the Instance Metadata Service (IMDS), a core component designed to securely furnish compute instances with temporary credentials to infiltrate and navigate cloud infras ... Read more

Published Date: Sep 23, 2025 (1 month, 1 week ago)

Results are limited to the first 20 news articles due to potential performance issues.

The following table lists the changes that have been made to the CVE-2025-51591 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Oct. 07, 2025

    Action Type Old Value New Value
    Added CVSS V3.1 AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
    Removed CVSS V3.1 AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N
    Added Reference https://github.com/jgm/pandoc/commit/67edf7ce7cd3563a180ae44bd122b012e22364f8
    Added Reference https://github.com/jgm/pandoc/issues/10682
    Added Reference https://www.wiz.io/blog/imds-anomaly-hunting-zero-day
    Added Reference not-applicable:http://jgm.com/
    Added Reference not-applicable:http://pandoc.com/
  • CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Sep. 24, 2025

    Action Type Old Value New Value
    Added Reference https://pandoc.org
  • CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Jul. 11, 2025

    Action Type Old Value New Value
    Added CVSS V3.1 AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N
    Added CWE CWE-918
  • New CVE Received by [email protected]

    Jul. 11, 2025

    Action Type Old Value New Value
    Added Description A Server-Side Request Forgery (SSRF) in JGM Pandoc v3.6.4 allows attackers to gain access to and compromise the whole infrastructure via injecting a crafted iframe.
    Added Reference http://jgm.com
    Added Reference http://pandoc.com
    Added Reference https://github.com/RealestName/Vulnerability-Research/tree/main/CVE-2025-51591
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
Vulnerability Scoring Details
Base CVSS Score: 6.5
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact