CVE-2026-45629 | dokploy up to 0.28.8 WebSocket Endpoint /listen-deployment os command injection (GHSA-r73h-qr3p-hf7f)

A vulnerability classified as critical was found in dokploy up to 0.28.8. The affected element is an unknown function of the file /listen-deployment of the component WebSocket Endpoint. Executing a manipulation can lead to os command injection.

This vulnerability appears as CVE-2026-45629. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More