Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

DesktopCommanderMCP — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in DesktopCommanderMCP, with AI-generated Chinese analysis, references, and POCs.

Vendor: wonderwhy-er

CVE IDTitleCVSSSeverityPublished
CVE-2025-11491 wonderwhy-er DesktopCommanderMCP command-manager.ts CommandManager os command injection CWE-78 6.3 Medium2025-10-08
CVE-2025-11490 wonderwhy-er DesktopCommanderMCP Absolute Path command-manager.ts extractBaseCommand os command injection CWE-78 6.3 Medium2025-10-08
CVE-2025-11489 wonderwhy-er DesktopCommanderMCP filesystem.ts isPathAllowed symlink CWE-61 4.5 Medium2025-10-08

All 3 known CVE vulnerabilities affecting DesktopCommanderMCP with full Chinese analysis, references, and POCs where available.