Skip to main content
Loading…
    CVE-2025-66454 — Arcade MCP allows you to to create, deploy, and share MCP Servers. Prior to 1.5.4, the arcade-mcp HTTP server uses a hardcoded default worker secret ("dev") that is never validated or overridd — CVE Database · The Intelligence Room