mcp-command-injection · tool-use · OWASP: LLM06, LLM01 · MITRE: AML.T0051.000, AML.T0040Shell metacharacters injected into MCP tool parameters to execute arbitrary commandsRun it:mcp-data-exfiltration · tool-use · OWASP: LLM02, LLM06 · MITRE: AML.T0083, AML.T0086Agent tricked into embedding sensitive data in URLs or webhooks via MCP tool side channelsRun it:mcp-tool-poisoning · tool-use · OWASP: LLM02, LLM06 · MITRE: AML.T0051.000, AML.T0054Hidden instructions embedded in MCP tool descriptions manipulate agent behaviorRun it:mcp-rug-pull · tool-use · OWASP: LLM06, LLM02 · MITRE: AML.T0051.000, AML.T0053Previously trusted MCP tool changes behavior mid-session to request credentialsRun it:mcp-server-impersonation · tool-use · OWASP: LLM02, LLM06 · MITRE: AML.T0051.000, AML.T0065Malicious MCP server impersonates a trusted service to harvest credentialsRun it: