Description
Dockyard is a Docker container management app. Prior to 1.1.0, Docker container start and stop operations are performed through GET requests without CSRF protection. A remote attacker can cause a logged-in administrator's browser to request /apps/action.php?action=stop&name=<container> or /apps/action.php?action=start&name=<container>, which starts or stops the target container. This vulnerability is fixed in 1.1.0.
Published: 2026-04-09
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized Container Control
Action: Patch Immediately
AI Analysis

Impact

Dockyard’s admin interface exposes a GET endpoint that starts or stops containers without CSRF protection. An attacker can cause a logged‑in administrator’s browser to issue a request to /apps/action.php and trigger arbitrary container lifecycle changes. This allows the attacker to disrupt services by stopping critical containers or launch temporary containers that may run malicious code, thereby compromising availability and potentially confidentiality or integrity if the containers host privileged services.

Affected Systems

The vulnerable component is Dockyard by 10ij. All releases prior to version 1.1.0 are affected; Dockyard 1.1.0 and later include the fix that protects the start/stop operations.

Risk and Exploitability

The CVSS score of 6.5 indicates moderate severity. The exploit probability is not quantified (EPSS not available), and the vulnerability is not listed in CISA’s KEV catalog. The attack vector is inferred to be an authenticated user (the admin) whose browser can be prompted to send the malicious request, meaning an attacker needs either direct access to the admin user’s session or a social‑engineering technique to force the browser to send the request.

Generated by OpenCVE AI on April 9, 2026 at 23:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Dockyard to version 1.1.0 or later to apply the CSRF protection fix.
  • If an immediate upgrade is not possible, restrict access to management interfaces and enforce strict access controls so only trusted administrators can reach /apps/action.php.
  • Configure the web application firewall to block unauthorized GET requests to the action endpoint.
  • Verify that no background cron jobs or automation scripts trigger start/stop operations without proper authentication checks.
  • Educate administrators to avoid clicking unknown or suspicious links that could trigger remote requests from the browser.

Generated by OpenCVE AI on April 9, 2026 at 23:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 10 Apr 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 10 Apr 2026 09:00:00 +0000

Type Values Removed Values Added
First Time appeared 10ij
10ij dockyard
Vendors & Products 10ij
10ij dockyard

Thu, 09 Apr 2026 22:00:00 +0000

Type Values Removed Values Added
Description Dockyard is a Docker container management app. Prior to 1.1.0, Docker container start and stop operations are performed through GET requests without CSRF protection. A remote attacker can cause a logged-in administrator's browser to request /apps/action.php?action=stop&name=<container> or /apps/action.php?action=start&name=<container>, which starts or stops the target container. This vulnerability is fixed in 1.1.0.
Title Dockyard's Unauthenticated Cron Endpoint in Dockyard Enables Container Enumeration and Database Manipulation
Weaknesses CWE-306
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N'}

Subscriptions

10ij Dockyard
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-10T13:54:23.314Z

Reserved: 2026-04-07T19:13:20.378Z

Link: CVE-2026-39848

cve-icon Vulnrichment

Updated: 2026-04-10T13:54:11.988Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-04-09T22:16:34.407

Modified: 2026-04-13T15:02:27.760

Link: CVE-2026-39848

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-10T09:27:43Z

Weaknesses