Bx33661

**Name of the Vulnerable Software and Affected Versions** postcss versions prior to 7.1.2 **Description** An issue exists in the AST Serialization component within the `toString()` function of the `src/selectors/container.js` file. A remote attacker can perform a manipulation that leads to uncontrolled recursion, potentially causing a denial of service. This risk is primarily applicable to server-side environments processing user-generated CSS. **Recommendations** Update to version 7.1.2 or later. As a temporary workaround, restrict the processing of user-generated CSS through the `toString()` function in the `src/selectors/container.js` file.

**Name of the Vulnerable Software and Affected Versions** wireshark-mcp versions 1.1.5 and earlier **Description** wireshark-mcp exposes a `wireshark export objects` tool that accepts an attacker-controlled `dest dir` parameter and passes it to the `--export-objects` flag of tshark without mandatory path restrictions. By default, the path sandbox ` allowed dirs` is set to `None`, allowing any directory on the filesystem to be used as an export destination. This issue also affects the `merge pcap files`, `editcap trim`, `editcap split`, `editcap time shift`, `editcap deduplicate`, and `text2pcap import` operations. An attacker could potentially use prompt injection within a pcap payload to manipulate an AI model into writing files to sensitive locations, such as `/home/user/.ssh/` or `/etc/cron.d/`. **Recommendations** For versions 1.1.5 and earlier, set the `WIRESHARK MCP ALLOWED DIRS` environment variable to a restricted safe directory before starting the server to activate the sandbox and block writes outside the allowed path.

**Name of the Vulnerable Software and Affected Versions:** Modern Bag version 1.0 **Description:** A critical issue exists in an unknown functionality of the file `/action.php`. The manipulation of the argument `proId` can lead to SQL injection. This issue may be exploited remotely. The exploit has been publicly disclosed. **Recommendations:** Modern Bag version 1.0: Sanitize the `proId` argument to prevent SQL injection.