CVE-2026-45628 | dokploy up to 0.29.2 Javascript Template child_process.exec input validation (GHSA-3frc-cfh9-ch2c)

A vulnerability described as critical has been identified in dokploy up to 0.29.2. The impacted element is the function child_process.exec of the component Javascript Template Handler. Executing a manipulation can lead to improper input validation.

This vulnerability is registered as CVE-2026-45628. It is possible to launch the attack remotely. No exploit is available.