medium
medium
- CVE-2025-68143 - mcp-server-git arbitrary repository creation
- CVE-2025-68144 - mcp-server-git diff and checkout argument injection
- CVE-2025-68145 - mcp-server-git repository path validation bypass
- CVE-2026-11455 - MetaGPT Mermaid path command injection
- CVE-2026-39922 - GeoNode service registration SSRF
- CVE-2026-40181 - React Router protocol-relative open redirect
- CVE-2026-46636 - Twig cached template sandbox-state bypass
- CVE-2026-47742 - Shopper product Livewire authorization bypass
- CVE-2026-47745 - Shopper payment, currency, and carrier authorization bypass