CVE-2025-53825

Name of the Vulnerable Software and Affected Versions Dokploy versions prior to 0.24.3

Description Dokploy is a free, self-hostable Platform as a Service (PaaS). A vulnerability in the preview deployment feature allows any user to execute arbitrary code and access sensitive environment variables by opening a pull request on a public repository without authentication. This exposes secrets and potentially enables remote code execution, putting all public Dokploy users utilizing these preview deployments at risk.

Recommendations Update Dokploy to version 0.24.3 or later.