CVE-2025-53107P2HIGHCVSS 7.5fixed in 2.1.52025-07-01
CVE-2025-53107 [HIGH] CWE-77 CVE-2025-53107: @cyanheads/git-mcp-server is an MCP server designed to interact with Git repositories. Prior to vers
@cyanheads/git-mcp-server is an MCP server designed to interact with Git repositories. Prior to version 2.1.5, there is a command injection vulnerability caused by the unsanitized use of input parameters within a call to child_process.exec, enabling an attacker to inject arbitrary system commands. Successful exploitation can lead to remote code executi
ghsanvdosv