Command Injection in stata_do Leading to RCE via subprocess shell=True

github.com 2026-04-09查看中文 →

Security AdvisoryCriticalSepineTam

Affected:

stata-mcp@1.12.1

Referenced CVEs: CVE-2026-31040

This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.

More from this source

JeecBoot /sys/mLogin Bypasses Captcha and Lacks Rate Limiting for Brute Force 2026-05-10 CVE-2026-42245: Ruby net-imap Quadratic Complexity DoS Vulnerability 2026-05-10 Ruby net-imap response_reader logic error fix and POC 2026-05-10 Ruby net-imap v0.4.24 Security Advisory: Mitigating STARTTLS Stripping, Injection, and DoS 2026-05-10 Ruby Net::IMAP v0.6.4 Security Advisory: STARTTLS Stripping, Injection, and DoS Vulnerabilities 2026-05-10