CVE-2025-15061 | Framelink Figma MCP Server command injection (ZDI-25-1197)

Inserito da Angelo Barbosa | Dic 30, 2025 | CVE

A vulnerability was found in Framelink Figma MCP Server. It has been rated as critical. This vulnerability affects unknown code. This manipulation causes command injection.

This vulnerability is tracked as CVE-2025-15061. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2025-15061 | Framelink Figma MCP Server command injection (ZDI-25-1197)

Post correlati

CVE-2024-50209 | Linux Kernel up to 5.15.169/6.1.114/6.6.58/6.11.5 bnxt_re __alloc_pbl allocation of resources

CVE-2024-44818 | ZZCMS up to 2023 Header caina.php HTTP_Referer cross site scripting

CVE-2024-11993 | Liferay Portal/DXP Dispatch name cross site scripting

CVE-2023-6896 | SourceCodester Simple Image Stack Website 1.0 search cross site scripting