CVE-2026-3959 | 0xKoda WireMCP up to 7f45f8b2b4adeb76be8c6227eefb38533fdd6b1e Tshark CLI Command index.js server.tool os command injection

A vulnerability labeled as critical has been found in 0xKoda WireMCP up to 7f45f8b2b4adeb76be8c6227eefb38533fdd6b1e. Impacted is the function server.tool of the file index.js of the component Tshark CLI Command Handler. The manipulation results in os command injection.

This vulnerability was named CVE-2026-3959. The attack needs to be approached locally. In addition, an exploit is available.

This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-3959 | 0xKoda WireMCP up to 7f45f8b2b4adeb76be8c6227eefb38533fdd6b1e Tshark CLI Command index.js server.tool os command injection

Post correlati

CVE-2024-49622 | APA Banner Slider Plugin up to 1.0.0 on WordPress cross-site request forgery

CVE-2025-55070 | Mattermost up to 10.x Multi-Factor Authentication missing authentication

CVE-2024-12914 | Akınsoft QR Menü up to 1.05.11 cross site scripting

CVE-2025-58837 | Shiful H SS Font Awesome Icon Plugin up to 4.1.3 on WordPress cross site scripting