In composiohq/composio version 0.4.3, the mathematical_calculator endpoint uses the unsafe eval() function to perform mathematical operations. This can lead to arbitrary code execution if untrusted input is passed to the eval() function.
"https://github.com/pypa/advisory-database/blob/main/vulns/composio-core/PYSEC-2026-1264.yaml"