Browse all 5 CVE security advisories affecting wonderwhy-er. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-10691 | wonderwhy-er DesktopCommanderMCP start_search search-manager.ts redos — DesktopCommanderMCPCWE-1333 | 4.3 | Medium | 2026-06-02 |
| CVE-2026-10690 | wonderwhy-er DesktopCommanderMCP read_file filesystem.ts readFileFromUrl server-side request forgery — DesktopCommanderMCPCWE-918 | 6.3 | Medium | 2026-06-02 |
| CVE-2025-11491 | wonderwhy-er DesktopCommanderMCP command-manager.ts CommandManager os command injection — DesktopCommanderMCPCWE-78 | 6.3 | Medium | 2025-10-08 |
| CVE-2025-11490 | wonderwhy-er DesktopCommanderMCP Absolute Path command-manager.ts extractBaseCommand os command injection — DesktopCommanderMCPCWE-78 | 6.3 | Medium | 2025-10-08 |
| CVE-2025-11489 | wonderwhy-er DesktopCommanderMCP filesystem.ts isPathAllowed symlink — DesktopCommanderMCPCWE-61 | 4.5 | Medium | 2025-10-08 |
This page lists every published CVE security advisory associated with wonderwhy-er. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.