Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-vjqx-cfc4-9h6v
  • PyPI/mcp-server-git
 mcp-server-git : Path traversal in git_add allows staging files outside repository boundaries 26 Feb
  • Fix available
  • Severity - 6.4 (Medium)
GHSA-j22h-9j4x-23w5
  • PyPI/mcp-server-git
 mcp-server-git has missing path validation when using --repository flag 17 Dec 2025
  • Fix available
  • Severity - 6.4 (Medium)
GHSA-9xwc-hfwc-8w59
  • PyPI/mcp-server-git
 mcp-server-git argument injection in git_diff and git_checkout functions allows overwriting local files 17 Dec 2025
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-5cgr-j3jf-jw3v
  • PyPI/mcp-server-git
 mcp-server-git's unrestricted git_init tool allows repository creation at arbitrary filesystem locations 17 Dec 2025
  • Fix available
  • Severity - 6.5 (Medium)