Coollabs Coolify vulnerabilities
28 known vulnerabilities affecting coollabs/coolify.
Total CVEs
28
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4HIGH18MEDIUM6
Vulnerabilities
Page 2 of 2
CVE-2025-64421P3HIGHCVSS 8.0fixed in 4.0.0v4.0.02026-01-05
CVE-2025-64421 [HIGH] CWE-863 CVE-2025-64421: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. In Coolify versions up to and including v4.0.0-beta.434, a low privileged user (member) can invite a high privileged user. At first, the application will throw an error, but if the attacker clicks the invite button a second time, it actually works. This
nvd
CVE-2025-59158P3HIGHCVSS 8.0fixed in 4.0.0v4.0.02026-01-05
CVE-2025-59158 [HIGH] CWE-116 CVE-2025-59158: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Coolify versions prior to and including v4.0.0-beta.420.6 are vulnerable to a stored cross-site scripting (XSS) attack in the project creation workflow. An authenticated user with low privileges (e.g., member role) can create a project with a maliciously
nvd
CVE-2025-22610P3MEDIUMCVSS 6.5fixed in 4.0.0v4.0.02025-01-24
CVE-2025-22610 [MEDIUM] CWE-862 CVE-2025-22610: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to fetch the global coolify instance OAuth configuration. This exposes the "client id" and "client secret" for every custom OAuth provider. The attacker can also m
nvd
CVE-2025-22608P4MEDIUMCVSS 6.5fixed in 4.0.0v4.0.02025-01-24
CVE-2025-22608 [MEDIUM] CWE-639 CVE-2025-22608: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to revoke any team invitations on a Coolify instance by only providing a predictable and incrementing ID, resulting in a Denial-of-Service attack (DOS). Version 4.
nvd
CVE-2025-59955P4MEDIUMCVSS 5.7v4.0.02026-01-05
CVE-2025-59955 [MEDIUM] CWE-201 CVE-2025-59955: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Coolify versions prior to and including v4.0.0-beta.420.8 have an information disclosure vulnerability in the `/api/v1/teams/{team_id}/members` and `/api/v1/teams/current/members` API endpoints allows authenticated team members to access a highly sensi
nvd
CVE-2025-22607P4MEDIUMCVSS 5.5fixed in 4.0.0v4.0.02025-01-24
CVE-2025-22607 [MEDIUM] CWE-200 CVE-2025-22607: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to fetch the details page for any GitHub / GitLab configuration on a Coolify instance by only knowing the UUID of the model. This exposes the "client id", "client
nvd
CVE-2025-24025P4MEDIUMCVSS 6.1fixed in 4.0.0v4.0.02025-01-24
CVE-2025-24025 [MEDIUM] CWE-116 CVE-2025-24025: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.380, the tags page allows users to search for tags. If the search does not return any results, the query gets reflected on the error modal, which leads to cross-site scripting. Version 4.0.0-beta.380 fixes the issue.
nvd
CVE-2025-64422P4MEDIUMCVSS 4.3fixed in 4.0.0v4.0.02026-01-05
CVE-2025-64422 [MEDIUM] CWE-770 CVE-2025-64422: Coolify is an open-source and self-hostable tool for managing servers, applications, and databases.
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. In Coolify vstarting with version 4.0.0-beta.434, the /login endpoint advertises a rate limit of 5 requests but can be trivially bypassed by rotating the X-Forwarded-For header. This enables unlimited credential stuffing and brute-force attempts agains
nvd
← Previous2 / 2