CNNVD-202601-4191 Information

CNNVD ID

CNNVD-202601-4191

Related CVE

CVE-2026-0756

• CNNVD Published: 2026-01-23

Description (Chinese)

GitHub Kanban MCP Server是Maki个人开发者的一个应用程序。 GitHub Kanban MCP Server存在操作系统命令注入漏洞，该漏洞源于处理create_issue参数时未验证用户输入即执行系统调用，可能导致远程命令执行。

Description (English)

GitHub Kanban MCP Server is an application for Maki personal developers. GitHub Kanban MCP Server has an operational system command leak that originates from the system call without verifying user input when processing the file issue parameter, which may lead to remote command execution.

Hazard Level

Low

Vulnerability Type

操作系统命令注入

Affected Vendor

个人开发者

Published

2026-01-23

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-26-022/