Igor Duino

Name of the Vulnerable Software and Affected Versions: NGINX Proxy Manager versions prior to 2.11.3 Description: The issue allows an authenticated user with certificate management privileges to inject OS commands through untrusted input in the DNS provider configuration, potentially enabling remote attackers to execute arbitrary commands by modifying the DNS provider configuration. The vulnerability exists due to the lack of measures to neutralize special elements used in the OS command. Recommendations: For NGINX Proxy Manager versions prior to 2.11.3, update to version 2.11.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the `backend/internal/certificate.js` script and limiting the ability to modify the DNS provider configuration to minimize the risk of exploitation. Avoid using untrusted input in the DNS provider configuration until the issue is resolved.