Dokploy is a free, self-hostable Platform as a Service (PaaS). In 0.29.0 and earlier, the deleteRegistry function in Dokploy (packages/server/src/services/regis…

CVE-2026-45662 affects Dokploy, a self-hostable Platform as a Service (PaaS), in versions 0.29.0 and earlier. The vulnerability exists in the deleteRegistry function where docker logout commands are executed without proper shell escaping. While the docker login command correctly uses shEscape() for protection, the logout function lacks this security measure, creating an inconsistency. This flaw allows attackers to perform command injection attacks by crafting malicious registryUrl values when deleting a registry. The vulnerability is located in packages/server/src/services/registry.ts file.