@zenalexa/unicli

@zenalexa/unicli: Missing Origin validation in legacy HTTP MCP transport (CVE)

Uni-CLI versions before 0.225.2 lacked Origin header validation on the legacy JSON-RPC-over-HTTP MCP transport, allowing malicious