Homepage

nginx-proxy-manager-2-rootfs

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the nginx-proxy-manager-2-rootfs package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • L
Resource Exhaustion

<2.14.0-r1
  • M
Cross-site Scripting (XSS)

<2.14.0-r1
  • M
Directory Traversal

*
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<2.14.0-r1
  • H
Directory Traversal

*
  • L
Inefficient Regular Expression Complexity

<2.14.0-r1
  • M
Directory Traversal

*
  • H
Resource Exhaustion

<2.14.0-r1
  • L
CVE-2026-4923

<2.14.0-r1
  • L
CVE-2026-4926

<2.14.0-r1
  • H
Symlink Following

*
  • M
CVE-2026-2950

<2.14.0-r1
  • C
CVE-2026-4800

<2.14.0-r1
  • H
CVE-2026-39412

*
  • L
Directory Traversal

*
  • M
Resource Exhaustion

*
  • L
GHSA-6v7q-wjvx-w8wg

<2.14.0-r1
  • L
Resource Exhaustion

<2.14.0-r1
  • H
Out-of-bounds Write

*
  • M
Uncontrolled Recursion

*
  • L
CVE-2026-3449

*
  • L
CVE-2026-4867

<2.13.7-r0
  • C
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<2.13.1-r0
  • L
Uncontrolled Recursion

<2.13.1-r0
  • C
Directory Traversal

<2.14.0-r1
  • L
Algorithmic Complexity

<2.14.0-r1
  • H
Inefficient Regular Expression Complexity

<2.14.0-r1
  • L
Inefficient Regular Expression Complexity

<2.14.0-r1
  • H
Directory Traversal

*
  • L
Inefficient Regular Expression Complexity

<2.14.0-r0
  • H
CVE-2026-2391

<2.14.0-r0
  • L
Directory Traversal

*
  • M
CVE-2025-13465

<2.13.6-r2
  • M
Improper Handling of Unicode Encoding

*
  • L
CVE-2025-50537

<2.13.1-r0
  • M
Directory Traversal

*
  • L
CVE-2025-15284

<2.13.6-r0
  • L
Improper Verification of Cryptographic Signature

<2.13.6-r0
  • L
Improperly Controlled Modification of Dynamically-Determined Object Attributes

*
  • L
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

<2.13.4-r0
  • L
CVE-2024-29415

<2.12.3-r2
  • H
Inefficient Regular Expression Complexity

<2.12.3-r2
  • L
CVE-2024-28863

<2.12.3-r2
  • H
CVE-2022-24434

<2.12.3-r2
  • L
Inefficient Regular Expression Complexity

<2.12.3-r2
  • M
Resource Exhaustion

<2.12.3-r2
  • L
Resource Exhaustion

<2.12.3-r3
  • M
CVE-2022-33987

<2.12.3-r2
  • H
Inefficient Regular Expression Complexity

<2.12.3-r2
  • L
CVE-2025-7339

<2.12.6-r1
  • L
CVE-2024-47764

<2.12.3-r2
  • H
Unrestricted Upload of File with Dangerous Type

<2.12.3-r2
  • M
Cross-site Scripting (XSS)

<2.12.3-r2