Lucene search
K
CoollabsCoolify

28 matches found

CVE
CVE
added 2025/01/24 4:33 p.m.887 views

CVE-2025-22610

Summary: CVE-2025-22610 affects Coolify prior to 4.0.0-beta.361, where missing authorization lets any authenticated user fetch and modify the global OAuth configuration, exposing the OAuth client ID and client secret for every custom provider. Affected component/flow: global Coolify OAuth configu...

7.1CVSS6.4AI score0.00376EPSS
CVE
CVE
added 2025/01/24 2:54 p.m.72 views

CVE-2025-22605

CVE-2025-22605 affects Coolify prior to 4.0.0-beta.253, where an authenticated user can execute arbitrary commands in the local Coolify container due to a vulnerability in remote command execution. This could lead to data and private keys/tokens exposure, and the ability to modify running softwar...

9.3CVSS7.7AI score0.00519EPSS
CVE
CVE
added 2025/01/24 4:30 p.m.67 views

CVE-2025-22609

Coolify (open-source self-hosted) is affected for all versions prior to 4.0.0-beta.361. The issue is a missing authorization that allows any authenticated user to attach an existing private key from a Coolify instance to their own server. If the attacker’s target server configuration (IP/domain, ...

10CVSS9.7AI score0.00723EPSS
CVE
CVE
added 2025/01/24 4:28 p.m.64 views

CVE-2025-22608

Coolify (before 4.0.0-beta.361) suffers from missing authorization that lets any authenticated user revoke arbitrary team invitations by providing a predictable, incrementing ID, enabling Denial of Service. A patch is available in 4.0.0-beta.361. The issue’s description across multiple sources co...

6.5CVSS6.4AI score0.00348EPSS
CVE
CVE
added 2025/01/24 4:43 p.m.60 views

CVE-2025-22612

CVE-2025-22612 affects Coolify prior to 4.0.0-beta.374. The issue is due to missing authorization, allowing an authenticated user to retrieve private keys in plain text and, if the victim’s server configuration (IP/domain, port, user) matches, to execute arbitrary commands on the remote server. V...

10CVSS9.7AI score0.00597EPSS
CVE
CVE
added 2025/01/24 4:35 p.m.57 views

CVE-2025-22611

Coolify before 4.0.0-beta.361 is affected by an elevation of privilege due to missing authorization, allowing any authenticated user to escalate privileges to any role (including owner) and remove other members (admins/owners). This also enables access to the Terminal feature to execute remote co...

9.9CVSS9.7AI score0.00473EPSS
CVE
CVE
added 2025/01/24 4:46 p.m.52 views

CVE-2025-24025

CVE-2025-24025 affects Coolify versions prior to 4.0.0-beta.380. The issue arises on the tags search page: when a search yields no results, the query is reflected in the error modal, resulting in a cross-site scripting (XSS) vulnerability. The root cause is the reflective handling of user input o...

6.1CVSS6.3AI score0.00224EPSS
CVE
CVE
added 2025/01/24 3:45 p.m.49 views

CVE-2025-22607

CVE-2025-22607 concerns Coolify. Before 4.0.0-beta.361, an authenticated user could fetch the details page for any GitHub/GitLab configuration by knowing only the UUID, exposing the client id , client secret , and webhook secret . The issue is fixed in version 4.0.0-beta.361 . Connected sources c...

5.7CVSS6.5AI score0.00162EPSS
CVE
CVE
added 2025/01/24 3:38 p.m.48 views

CVE-2025-22606

CVE-2025-22606 describes a command-injection vulnerability in Coolify caused by unsafely handling project names in versions up to 4.0.0-beta.358 (likely earlier). An attacker with access to project management could inject arbitrary shell commands by including unescaped characters (e.g., a single ...

9.3CVSS8.1AI score0.00282EPSS
CVE
CVE
added 2025/08/27 4:47 p.m.29 views

CVE-2025-34161

CVE-2025-34161 affects Coolify versions prior to v4.0.0-beta.420.7. A remote code execution flaw exists in the project deployment workflow: authenticated users with low privileges can inject arbitrary shell commands through the Git Repository field during project creation, leading to arbitrary co...

9.4CVSS8.2AI score0.03691EPSS
CVE
CVE
added 2025/08/27 4:47 p.m.28 views

CVE-2025-34159

CVE-2025-34159 affects Coolify

9.4CVSS7.4AI score0.00919EPSS
CVE
CVE
added 2026/01/05 8:45 p.m.25 views

CVE-2025-64424

CVE-2025-64424 affects Coolify up to v4.0.0-beta.434, enabling a low-privileged user to run commands as root via a command-injection in the git source input fields of a resource. Several connected sources corroborate the vulnerability class and affected components; remediation notes indicate fixe...

9.4CVSS7.3AI score0.0194EPSS
CVE
CVE
added 2025/12/23 10:6 p.m.25 views

CVE-2025-66213

CVE-2025-66213 affects Coolify prior to 4.0.0-beta.451, where the File Storage Directory Mount Path feature chains an un-sanitized file_storage_directory_source parameter into shell commands. This authenticated vulnerability lets users with application/service management permissions run arbitrary...

9.4CVSS8.8AI score0.02968EPSS
CVE
CVE
added 2025/08/27 4:48 p.m.23 views

CVE-2025-34157

CVE-2025-34157 concerns Coolify. A stored XSS in the project-creation workflow affects versions prior to 4.0.0-beta.420.6. An authenticated user with low privileges can craft a project name containing JavaScript, which when an administrator deletes the project executes in the admin context, enabl...

9.4CVSS5.3AI score0.00448EPSS
CVE
CVE
added 2026/01/05 8:49 p.m.22 views

CVE-2025-64425

CVE-2025-64425 affects Coolify up to v4.0.0-beta.434. The vulnerability arises in the password reset flow where an attacker can modify the host header of the request. The victim receives a reset email containing a link to the attacker’s host; when the user clicks it, the reset token is sent to th...

8.5CVSS6.6AI score0.00356EPSS
CVE
CVE
added 2026/01/05 5:39 p.m.17 views

CVE-2025-59156

CVE-2025-59156 affects Coolify prior to version 4.0.0-beta.420.7, where a remote command injection flaw in the application deployment workflow allows a low-privileged user to inject arbitrary Docker Compose directives. By defining a malicious service that mounts the host filesystem, an attacker c...

9.4CVSS7.2AI score0.00949EPSS
CVE
CVE
added 2025/12/23 9:49 p.m.17 views

CVE-2025-66210

CVE-2025-66210 (Coolify) : An authenticated command-injection in the Database Import functionality allows users with application/service management permissions to execute arbitrary commands as root on managed servers. The issue arises because database names passed to shell commands during import ...

9.4CVSS8.7AI score0.02701EPSS
CVE
CVE
added 2026/01/05 8:41 p.m.16 views

CVE-2025-64423

Coolify CVE-2025-64423 affects the Web UI: in versions up to and including 4.0.0-beta.434, a low-privileged member can see and use admin invitation links, allowing login as an administrator if used before the legitimate recipient, i.e., privilege escalation. The Red Hat/NVD entries corroborate th...

8.8CVSS6.2AI score0.00292EPSS
CVE
CVE
added 2026/01/05 8:29 p.m.15 views

CVE-2025-64422

CVE-2025-64422 affects Coolify 4.0.0-beta.434 and later. The /login endpoint advertises a rate limit of 5 requests but can be bypassed by rotating the X-Forwarded-For header, enabling unlimited credential stuffing and brute-force attempts against user and admin accounts. The available connected s...

6.9CVSS6.5AI score0.00252EPSS
CVE
CVE
added 2025/12/23 10:4 p.m.15 views

CVE-2025-66212

CVE-2025-66212 (Coolify) is an authenticated command injection affecting Coolify before 4.0.0-beta.451. The vulnerability lies in Dynamic Proxy Configuration Filename handling, where proxy filenames are passed to shell commands without escaping, enabling arbitrary commands to run with root privil...

9.4CVSS8.7AI score0.0318EPSS
CVE
CVE
added 2026/01/05 7:42 p.m.14 views

CVE-2025-64421

CVE-2025-64421 affects Coolify up to version 4.0.0-beta.434. A low-privileged user (member) can invite a high-privileged user by triggering a double-invite process, thereby granting themselves administrator access. After being invited, the attacker can perform a password reset to log in as admin....

8.7CVSS6.2AI score0.00253EPSS
CVE
CVE
added 2025/12/23 9:42 p.m.14 views

CVE-2025-66209

CVE-2025-66209 affects Coolify (open‑source self‑hosted platform for managing servers, apps, and databases). The authenticated command injection vulnerability exists prior to 4.0.0-beta.451 in the Database Backup functionality, where database names are passed to shell commands without sanitizatio...

9.9CVSS8.7AI score0.0376EPSS
CVE
CVE
added 2025/12/23 10:0 p.m.14 views

CVE-2025-66211

CVE-2025-66211 affects Coolify prior to 4.0.0-beta.451. An authenticated command injection in PostgreSQL Init Script Filename handling allows users with application/service management permissions to run arbitrary commands as root on managed servers. Shell commands receive unvalidated PostgreSQL i...

9.4CVSS8.8AI score0.02701EPSS
CVE
CVE
added 2026/01/05 5:41 p.m.13 views

CVE-2025-59157

CVE-2025-59157 – Coolify Git Repository RCE . Multiple sources describe a command-injection flaw in Coolify prior to 4.0.0-beta.420.7, triggered by unsanitized input in the Git Repository field during project creation/deployment workflows. The issue allows an attacker with regular member privileg...

9.9CVSS7.2AI score0.01798EPSS
CVE
CVE
added 2026/01/05 5:44 p.m.13 views

CVE-2025-59158

CVE-2025-59158 affects Coolify, a self-hosted application management platform. Version scope: vulnerable when using versions up to and including v4.0.0-beta.420.6; a stored cross-site scripting (XSS) flaw exists in the project creation workflow. An authenticated user with low privileges (e.g., me...

9.4CVSS5.2AI score0.00474EPSS
CVE
CVE
added 2026/01/05 5:46 p.m.13 views

CVE-2025-59955

Coolify (versions ≤ 4.0.0-beta.420.8) has an information disclosure in /api/v1/teams/{team_id}/members and /api/v1/teams/current/members, allowing authenticated team members to access the email_change_code of other users on the same team. This code is intended for single-use email-change verifica...

7.1CVSS5.8AI score0.00252EPSS
Web
CVE
CVE
added 2026/01/05 7:20 p.m.13 views

CVE-2025-64420

CVE-2025-64420 affects Coolify before/including v4.0.0-beta.434, where low-privilege users could view the root user’s private key on the instance, enabling SSH access as root. Public sources consistently describe this as an information-disclosure flaw that directly facilitates privileged access. ...

9.9CVSS6.4AI score0.00495EPSS
CVE
CVE
added 2026/01/05 7:16 p.m.12 views

CVE-2025-64419

CVE-2025-64419 affects Coolify prior to 4.0.0-beta.445. The vulnerability arises from unsanitized docker-compose.yaml parameters used in commands, enabling a remote attacker to run commands as root on the Coolify instance if a victim creates an application from an attacker repository (build pack ...

9.6CVSS6.8AI score0.00619EPSS