A vulnerability has been found in dokploy up to 0.23.6 and classified as critical. This vulnerability affects unknown code of the component tRPC Procedure. The manipulation of the argument appName leads to os command injection.

This vulnerability was named CVE-2025-53376. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.