VYPR

npm package

ebay-mcp

pkg:npm/ebay-mcp

Vulnerabilities (1)

  • CVE-2026-27203HigFeb 21, 2026
    affected <= 1.7.2

    eBay API MCP Server is an open source local MCP server providing AI assistants with comprehensive access to eBay's Sell APIs. All versions are vulnerable to Environment Variable Injection through the updateEnvFile function. The ebay_set_user_tokens tool allows updating the .env f