[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-59726":6},{"stargazers_count":4,"fetched_at":5},7,"2026-07-09T17:25:38.292Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":73,"aliases":74,"duplicate_of":9,"upstream":75,"downstream":76,"duplicates":77,"related":78,"reserved_at":9,"published_at":79,"modified_at":80,"state":81,"summary":82,"references_raw":89,"kevs":108,"epss":9,"epss_history":109,"metrics":110,"affected":114},"CVE-2026-59726","Ruflo is an agent meta-harness for Claude Code and Codex. Prior to 3.16.3, ruflo's default docker-compose deployment exposed the MCP bridge POST /mcp and POST /mcp/:group endpoints without authentication, allowing an unauthenticated network attacker to invoke tools/call to terminal_execute, obtain a shell in the bridge container, read provider API keys, and poison AgentDB learning-store patterns. This issue is fixed in version 3.16.3.",null,[11,40,66],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-78","Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')","The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.","weakness","Stable","Base","High",[20,24,28,32,36],{"id":21,"name":22,"techniques":23},"CAPEC-108","Command Line Execution through SQL Injection",[],{"id":25,"name":26,"techniques":27},"CAPEC-15","Command Delimiters",[],{"id":29,"name":30,"techniques":31},"CAPEC-43","Exploiting Multiple Input Interpretation Layers",[],{"id":33,"name":34,"techniques":35},"CAPEC-6","Argument Injection",[],{"id":37,"name":38,"techniques":39},"CAPEC-88","OS Command Injection",[],{"_key":41,"id":41,"name":42,"description":43,"type":15,"status":44,"abstraction":17,"likelihood_of_exploit":18,"capec":45},"CWE-306","Missing Authentication for Critical Function","The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.","Draft",[46,50,54,58,62],{"id":47,"name":48,"techniques":49},"CAPEC-12","Choosing Message Identifier",[],{"id":51,"name":52,"techniques":53},"CAPEC-166","Force the System to Reset Values",[],{"id":55,"name":56,"techniques":57},"CAPEC-216","Communication Channel Manipulation",[],{"id":59,"name":60,"techniques":61},"CAPEC-36","Using Unpublished Interfaces or Functionality",[],{"id":63,"name":64,"techniques":65},"CAPEC-62","Cross Site Request Forgery",[],{"_key":67,"id":67,"name":68,"description":69,"type":15,"status":70,"abstraction":71,"likelihood_of_exploit":9,"capec":72},"CWE-942","Permissive Cross-domain Security Policy with Untrusted Domains","The product uses a web-client protection\n         mechanism such as a Content Security Policy (CSP) or\n         cross-domain policy file, but the policy includes untrusted\n         domains with which the web client is allowed to\n         communicate.","Incomplete","Variant",[],[],[],[],[],[],[],"2026-07-09T17:31:20.627Z","2026-07-09T18:43:24.749Z","PUBLISHED",{"cisa_kev":83,"cisa_ransomware":83,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":84,"severity_score":85,"severity_version":86,"severity_source":87,"severity_vector":88,"severity_status":81},false,"critical",10,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",[90,95,100,104],{"url":91,"sources":92,"tags":93},"https://github.com/ruvnet/ruflo/security/advisories/GHSA-c4hm-4h84-2cf3",[87],[94],"X Refsource CONFIRM",{"url":96,"sources":97,"tags":98},"https://github.com/ruvnet/ruflo/pull/2521",[87],[99],"X Refsource MISC",{"url":101,"sources":102,"tags":103},"https://github.com/ruvnet/ruflo/commit/d00a0a40cd8bdbca877ac7f675f416bdc69accd1",[87],[99],{"url":105,"sources":106,"tags":107},"https://github.com/ruvnet/ruflo/releases/tag/v3.16.3",[87],[99],[],[],[111],{"source":87,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":112,"cvss_v4_0":9},{"baseScore":85,"baseSeverity":113,"vectorString":88,"impactScore":85,"exploitabilityScore":85},"CRITICAL",[115],{"ecosystem":9,"name":116,"vendor":117,"product":116,"cpe_part":118,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":119},"ruflo","ruvnet","a",[120],{"version":121,"is_range":122,"range_type":87,"version_start":9,"version_start_type":9,"version_end":123,"version_end_type":124,"fixed_in":9},"\u003C 3.16.3",true,"3.16.3","excluding"]