Security
Headlines

Headlines Latest CVEs

Headline

GHSA-h4rf-624j-gj33: terminal-controller-mcp vulnerable to Command Injection

A command injection vulnerability in the execute_command function of terminal-controller-mcp 0.1.7 allows attackers to execute arbitrary commands via a crafted input.

1 day ago

#vulnerability #git #intel

Skip to content

Navigation Menu

- AI CODE CREATION
  - GitHub CopilotWrite better code with AI
  - GitHub SparkBuild and deploy intelligent apps
  - GitHub ModelsManage and compare prompts
  - MCP RegistryNewIntegrate external tools

View all features

Pricing

Provide feedback

Saved searches****Use saved searches to filter your results more quickly

Sign up

Appearance settings

GitHub Advisory Database
GitHub Reviewed
CVE-2025-61492

terminal-controller-mcp vulnerable to Command Injection

Critical severity GitHub Reviewed Published Jan 7, 2026 to the GitHub Advisory Database • Updated Jan 8, 2026

Package

pip terminal-controller (pip)

Affected versions

<= 0.1.7

Description

Published to the GitHub Advisory Database

Jan 7, 2026

EPSS score

ghsa: Latest News

GHSA-fg6f-75jq-6523: Authlib has 1-click Account Takeover vulnerability

17 hours ago

GHSA-pc9j-5v36-2mww: AWS SDK for Swift adopted defense in depth enhancement for region parameter value

18 hours ago

GHSA-j965-2qgj-vjmq: JavaScript SDK v2 users should add validation to the region parameter value in or migrate to v3

18 hours ago

GHSA-6475-r3vj-m8vf: AWS SDK for JavaScript v3 adopted defense in depth enhancement for region parameter value

18 hours ago

GHSA-mcmc-2m55-j8jj: vLLM introduced enhanced protection for CVE-2025-62164

18 hours ago