Yinci Chen

**Name of the Vulnerable Software and Affected Versions** crazyrabbitLTC mcp-code-review-server versions prior to 0.1.1 **Description** A command injection flaw exists in the RepoMix Command Handler component within the `executeRepomix()` function of the `src/repomix.ts` file. This issue allows a remote attacker to perform manipulations that result in unauthorized command execution. **Recommendations** As a temporary workaround, restrict the use of the `executeRepomix()` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** awesome-cursor-mpc-server versions prior to 2.0.2 **Description** A flaw in the Ccode-Review Tool component allows for remote command injection. The issue exists within the `runCodeReviewTool()` function located in the `src/tools/codeReview.ts` file, where improper manipulation can lead to the execution of arbitrary commands. **Recommendations** As a temporary workaround, restrict the use of the `runCodeReviewTool()` function until a patch is available.

Name of the Vulnerable Software and Affected Versions awwaiid mcp-server-taskwarrior versions up to 1.0.1 Description A security issue exists in awwaiid mcp-server-taskwarrior up to version 1.0.1. The `server.setRequestHandler` function within the `index.ts` file is susceptible to command injection through manipulation of the `Identifier` argument. This requires local access to execute the attack. The patch identified as 1ee3d282debfa0a99afeb41d22c4b2fd5a3148f2 addresses this issue. Recommendations Apply the patch 1ee3d282debfa0a99afeb41d22c4b2fd5a3148f2 to resolve this vulnerability.

Name of the Vulnerable Software and Affected Versions elgentos magento2-dev-mcp versions up to 1.0.2 Description A flaw exists in elgentos magento2-dev-mcp up to version 1.0.2 due to a command injection issue within the `executeMagerun2Command` function located in the src/index.ts file. This manipulation can be exploited locally. Recommendations Apply the patch aa1ffcc0aea1b212c69787391783af27df15ae9d to resolve the issue.

Name of the Vulnerable Software and Affected Versions Nor2-io heim-mcp versions up to 0.1.3 Description A flaw exists in the `registerTools` function within the `src/tools.ts` file of the `new heim application/deploy heim application/deploy heim application to cloud` component. This can lead to operating system command injection, requiring local access for exploitation. The issue has been publicly disclosed. Recommendations Install patch c321d8af25f77668781e6ccb43a1336f9185df37 to address this issue.

Name of the Vulnerable Software and Affected Versions efforthye fast-filesystem-mcp versions up to 3.5.1 Description A security flaw exists in efforthye fast-filesystem-mcp up to version 3.5.1. The `handleGetDiskUsage` function within the src/index.ts file is susceptible to command injection. This issue is remotely exploitable. The exploit has been publicly released and may be used for attacks. Recommendations Update efforthye fast-filesystem-mcp to a version later than 3.5.1.

**Name of the Vulnerable Software and Affected Versions** raine consult-llm-mcp versions through 2.5.3 **Description** A flaw exists in the `child process.execSync` function within the `src/server.ts` file. Manipulation of the `git diff.base ref`/`git diff.files` argument can lead to operating system command injection. This issue is only exploitable with local access. The exploit is publicly available. **Recommendations** Upgrade to version 2.5.4 to address this issue.

**Name of the Vulnerable Software and Affected Versions** DeDeveloper23 codebase-mcp up to 3ec749d237dd8eabbeef48657cf917275792fde6 **Description** A flaw exists in the `getCodebase`/`getRemoteCodebase`/`saveCodebase` functions within the `src/tools/codebase.ts` file of the RepoMix Command Handler component. This issue allows for operating system command injection. The attack requires local access. The exploit is publicly available. The product utilizes a rolling release model, making specific version information for updates unavailable. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** kazuph mcp-docs-rag versions up to 0.5.0 **Description** A flaw exists in the `cloneRepository` function within the `src/index.ts` file of the `add git repository/add text file` component. This issue allows for operating system command injection, requiring local access for exploitation. The project maintainers were notified of the issue but have not yet responded. The exploit is publicly available. **Recommendations** Versions prior to 0.5.1 should be updated. As a temporary workaround, consider restricting access to the `cloneRepository` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** sigmade Git-MCP-Server versions prior to 785aa159f262a02d5791a5d8a8e13c507ac42880 **Description** A flaw exists in sigmade Git-MCP-Server due to an os command injection within the `child process.exec` function located in the `src/gitUtils.ts` file, specifically within the `show file diff` component. The issue is triggered through local exploitation. The exploit has been publicly disclosed. **Recommendations** Apply a patch to correct this issue.

**Name of the Vulnerable Software and Affected Versions** bazinga012 mcp code executor versions up to 0.3.0 **Description** A flaw exists in the `installDependencies` function within the `src/index.ts` file that could allow for command injection. This issue is exploitable only within a local environment and a public exploit is available. The project maintainers were notified of the issue but have not yet responded. **Recommendations** Apply a patch to resolve this issue. As a temporary workaround, consider restricting access to the `installDependencies` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** hypermodel-labs mcp-server-auto-commit version 1.0.0 **Description** A command injection issue exists in the `getGitChanges` function within the `index.ts` file. This manipulation allows for local execution of commands. The exploit has been publicly disclosed. **Recommendations** Apply patch f7d992c830c5f2ec5749852e66c0195e3ed7fe30 to resolve this issue.

**Name of the Vulnerable Software and Affected Versions** AvinashBole quip-mcp-server version 1.0.0 **Description** A flaw exists in AvinashBole quip-mcp-server that allows for command injection. The issue is located within the `setupToolHandlers` function in the `src/index.ts` file. This manipulation can be performed remotely. The exploit for this issue has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** 0xKoda WireMCP versions up to 7f45f8b2b4adeb76be8c6227eefb38533fdd6b1e **Description** A flaw exists in 0xKoda WireMCP that allows for operating system command injection. The issue resides in the `server.tool` function within the `index.js` file of the Tshark CLI Command Handler component. Manipulation of this function can lead to the execution of arbitrary commands on the system. The attack requires local access. The exploit for this issue has been publicly released. The product employs a rolling release system, meaning version information for affected or updated releases is not publicly available. The project maintainers were notified of the issue but have not yet responded. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** RyuzakiShinji biome-mcp-server versions up to 1.0.0 **Description** A security flaw exists in RyuzakiShinji biome-mcp-server up to version 1.0.0, related to an unknown functionality within the `biome-mcp-server.ts` file. A manipulation of this functionality can lead to command injection, and the attack can be initiated remotely. The exploit has been publicly released. **Recommendations** Apply patch 335e1727147efeef011f1ff8b05dd751d8a660be.

**Name of the Vulnerable Software and Affected Versions** PhialsBasement nmap-mcp-server versions up to bee6d23547d57ae02460022f7c78ac0893092e38 **Description** A command injection issue exists in the `child process.exec` function within the Nmap CLI Command Handler component, located in the `src/index.ts` file. This manipulation can be performed remotely. The product utilizes a rolling release system, and specific version information for affected or updated releases is not disclosed. **Recommendations** Apply patch 30a6b9e1c7fa6146f51e28d6ab83a2568d9a3488 to resolve this issue.