CVE-2025-53376 | dokploy up to 0.23.6 tRPC Procedure appName os command injection (GHSA-m486-7pmj-8cmv)

Inserito da Angelo Barbosa | Lug 7, 2025 | CVE

A vulnerability has been found in dokploy up to 0.23.6 and classified as critical. This vulnerability affects unknown code of the component tRPC Procedure. The manipulation of the argument appName leads to os command injection.

This vulnerability was named CVE-2025-53376. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-53376 | dokploy up to 0.23.6 tRPC Procedure appName os command injection (GHSA-m486-7pmj-8cmv)

Post correlati

CVE-2024-27246 | Zoom Workplace Desktop App use after free

CVE-2024-12119 | bradvin FooGallery Plugin up to 2.4.29 on WordPress default_gallery_title_size cross site scripting

CVE-2024-9327 | code-projects Blood Bank System 1.0 /forgot.php useremail sql injection

CVE-2024-9400 | Mozilla Firefox up to 128.2/130 JIT Compilation memory corruption