Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.17 views

EUVD-2025-25438

Malicious code in bioql PyPI...

8.1CVSS5.7AI score0.05236EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2025/08/22 11:23 p.m.10 views

CVE-2025-9262

A flaw has been found in wong2 mcp-cli 1.13.0. Affected is the function redirectToAuthorization of the file /src/oauth/provider.js of the component oAuth Handler. This manipulation causes os command injection. The attack may be initiated remotely. The attack is considered to have high complexity...

8.1CVSS7.5AI score0.05236EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2025/08/21 12:30 a.m.9 views

wong2 mcp-cli Command Injection Vulnerability

A flaw has been found in wong2 mcp-cli 1.13.0. Affected is the function redirectToAuthorization of the file /src/oauth/provider.js of the component oAuth Handler. This manipulation causes os command injection. The attack may be initiated remotely. The attack is considered to have high complexity...

8.1CVSS7.5AI score0.05236EPSS
Exploits1References9Affected Software1
vulnersOsv
vulnersOsv
added 2025/08/20 11:44 p.m.6 views

card-ocr-fastmcp (=1.0.0) potentially affected by CVE-2025-9262 via @wong2/mcp-cli (=1.13.0)

@wong2/mcp-cli NPM version =1.13.0 is affected by a known vulnerability. The following packages have a transitive dependency on @wong2/mcp-cli and may be impacted: - card-ocr-fastmcp =1.0.0 Source cves: CVE-2025-9262 Source advisory: SNYK:JS-WONG2MCPCLI-12205740...

8.1CVSS6.1AI score0.05236EPSS
Exploits1
OSV
OSV
added 2025/08/20 11:15 p.m.5 views

CVE-2025-9262

A flaw has been found in wong2 mcp-cli 1.13.0. Affected is the function redirectToAuthorization of the file /src/oauth/provider.js of the component oAuth Handler. This manipulation causes os command injection. The attack may be initiated remotely. The attack is considered to have high complexity...

8.1CVSS5.3AI score0.05236EPSS
Exploits1References5
NVD
NVD
added 2025/08/20 11:15 p.m.16 views

CVE-2025-9262

A flaw has been found in wong2 mcp-cli 1.13.0. Affected is the function redirectToAuthorization of the file /src/oauth/provider.js of the component oAuth Handler. This manipulation causes os command injection. The attack may be initiated remotely. The attack is considered to have high complexity...

8.1CVSS0.05236EPSS
Exploits1References5
Rows per page
Query Builder