Command Injection Vulnerability in GitHub Kanban MCP Server by Sunwood AI Labs
CVE-2025-53818

8.9HIGH

Key Information:

Vendor

Sunwood-ai-labs

Status
Github-kanban-mcp-server
Vendor
CVE Published:
14 July 2025

What is CVE-2025-53818?

The GitHub Kanban MCP Server, used for managing GitHub issues in a Kanban board format, suffers from a command injection vulnerability in versions 0.3.0 and 0.4.0. This vulnerability arises from the server's add_comment tool, which employs the insecure Node.js child process API exec. As it concatenates untrusted user input to execute GitHub commands, malicious users could exploit this mechanism to execute arbitrary commands on the server. Currently, there are no patches available to mitigate this issue, making it critical for users to exercise caution when using this software.

Affected Version(s)

github-kanban-mcp-server >= 0.3.0, <= 0.4.0

References

https://github.com/Sunwood-ai-labs/github-kanban-mcp-serv...
x_refsource_CONFIRM
https://github.com/Sunwood-ai-labs/github-kanban-mcp-serv...
x_refsource_MISC
https://github.com/Sunwood-ai-labs/github-kanban-mcp-serv...
x_refsource_MISC

CVSS V4

Score:
8.9
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-53818 : Command Injection Vulnerability in GitHub Kanban MCP Server by Sunwood AI Labs