CNNVD-202601-4840 Information

CNNVD ID

CNNVD-202601-4840

Related CVE

CVE-2026-24839

• CNNVD Published: 2026-01-28

Description (Chinese)

Dokploy是Dokploy开源的一个开源软件。 Dokploy 0.26.6之前版本存在安全漏洞，该漏洞源于缺少框架破坏标头，可能导致点击劫持攻击。

Description (English)

Dokploy is an open source software for Dokploy open source. The previous version of Dokploy 0.26 had a security loophole, which stemmed from the lack of a framework breaker, which could lead to hijacking attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Dokploy

Published

2026-01-28

Last Modified

2026-02-24

References

https://github.com/Dokploy/dokploy/commit/9714695d5a78fe24496f989ab81807ba04699df8 https://github.com/Dokploy/dokploy/pull/3500 https://github.com/Dokploy/dokploy/security/advisories/GHSA-c94j-8wgf-2q9q

Patch

https://github.com/Dokploy/dokploy/releases