CYBERHAWK / CVE / CVE-2026-6980

CVE-2026-6980

GitPilot-MCP

HIGH CVSS 7.3 ai

The flaw

Command injection in repo_path function allows remote code execution.

What to do

Update to latest commit or disable until patched

▸ Scan my repo for CVE-2026-6980

References

NVD CISA KEV OSV GitHub Advisory MITRE News search
First seen 2026-05-01 · Tracked by PickBits CyberHawk · Weekly CVE digest
← All CVEs RSS Scheduled audits