Lucene search
K

10 matches found

NVD
NVD
added 2026/01/05 6:15 p.m.4 views

CVE-2025-59157

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.420.7, the Git Repository field during project creation is vulnerable to command injection. User input is not properly sanitized, allowing attackers to inject arbitrary...

9.9CVSS0.01798EPSS
Exploits1References1
CVE
CVE
added 2026/01/05 5:41 p.m.12 views

CVE-2025-59157

CVE-2025-59157 – Coolify Git Repository RCE . Multiple sources describe a command-injection flaw in Coolify prior to 4.0.0-beta.420.7, triggered by unsanitized input in the Git Repository field during project creation/deployment workflows. The issue allows an attacker with regular member privileg...

9.9CVSS7.2AI score0.01798EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/01/05 5:41 p.m.26 views

CVE-2025-59157 Coolify has Git Repository RCE

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.420.7, the Git Repository field during project creation is vulnerable to command injection. User input is not properly sanitized, allowing attackers to inject arbitrary...

9.9CVSS0.01798EPSS
Exploits1References1
EUVD
EUVD
added 2026/01/05 5:41 p.m.4 views

EUVD-2025-206243

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.420.7, the Git Repository field during project creation is vulnerable to command injection. User input is not properly sanitized, allowing attackers to inject arbitrary...

9.9CVSS7AI score0.01798EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25912

Malicious code in bioql PyPI...

9.4CVSS6.4AI score0.03691EPSS
Exploits3References4
RedhatCVE
RedhatCVE
added 2025/08/30 6:18 p.m.4 views

CVE-2025-34161

Coolify versions prior to v4.0.0-beta.420.7 are vulnerable to a remote code execution vulnerability in the project deployment workflow. The platform allows authenticated users, with low-level member privileges, to inject arbitrary shell commands via the Git Repository field during project creatio...

9.4CVSS8.8AI score0.03691EPSS
Exploits3References1
NVD
NVD
added 2025/08/27 5:15 p.m.4 views

CVE-2025-34161

Coolify versions prior to v4.0.0-beta.420.7 are vulnerable to a remote code execution vulnerability in the project deployment workflow. The platform allows authenticated users, with low-level member privileges, to inject arbitrary shell commands via the Git Repository field during project creatio...

9.4CVSS0.03691EPSS
Exploits3References3
ATTACKERKB
ATTACKERKB
added 2025/08/27 4:47 p.m.3 views

CVE-2025-34161

Coolify versions prior to v4.0.0-beta.420.7 are vulnerable to a remote code execution vulnerability in the project deployment workflow. The platform allows authenticated users, with low-level member privileges, to inject arbitrary shell commands via the Git Repository field during project creatio...

9.4CVSS6.7AI score0.03691EPSS
Exploits3References4
CVE
CVE
added 2025/08/27 4:47 p.m.25 views

CVE-2025-34161

CVE-2025-34161 affects Coolify versions prior to v4.0.0-beta.420.7. A remote code execution flaw exists in the project deployment workflow: authenticated users with low privileges can inject arbitrary shell commands through the Git Repository field during project creation, leading to arbitrary co...

9.4CVSS8.2AI score0.03691EPSS
Exploits3References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/27 12:0 a.m.4 views

PT-2025-34901

Name of the Vulnerable Software and Affected Versions: Coolify versions prior to v4.0.0-beta.420.7 Description: Coolify is vulnerable to a remote code execution issue in the project deployment workflow. Authenticated users with low-level member privileges can inject arbitrary shell commands via t...

9.4CVSS8.6AI score0.03691EPSS
Exploits3References9
Rows per page
Query Builder