74
/ 100
15 days ago
glama

E-commerce MCP Server with Chatwoot Integration

Enables AI agents to manage e-commerce operations (products, carts, clients) through WhatsApp via Chatwoot, using MCP tools for inventory, cart, and customer management.

Is this your MCP?

Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.

Install from

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings
No credential exfiltration, no sensitive file access, no obfuscation
Static analysis found nothing flowing your secrets to unexpected places.
// known CVEs in dependencies3 medium

Disclosed vulnerabilities in this server's declared npm dependencies (via OSV). Whether each is reachable depends on the installed versions.

mediumagents@0.2.32GHSA-cvhv-6xm6-c3v4

Cloudflare Agents is Vulnerable to Reflected Cross-Site Scripting in the AI Playground's OAuth callback handler

mediumagents@0.2.32GHSA-r7x9-8ph7-w8cg

Cloudflare Agents SDK has Insecure Direct Object Reference (IDOR) via Header-Based Email Routing

mediumagents@0.2.32GHSA-w5cr-2qhr-jqc5

Cloudflare Agents has a Reflected Cross-Site Scripting (XSS) vulnerability in AI Playground site

Depend on this server? Get alerted when its CVEs change.Watch this server free →
// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance — verified publishers only
We have 6 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[![M8ven Score](https://m8ven.ai/badge/mcp/nobodyh-ctrl-mcp-server-laburenchallenge-13kwxm)](https://m8ven.ai/mcp/nobodyh-ctrl-mcp-server-laburenchallenge-13kwxm)
commit: b3ba7aa096e9d9b92f43d50905bc8929e48d3c15
code hash: fc9d4d5bcc8102866e16cc17e65ce6438279b4256b673ff763dabfeee5924b3b
verified: 6/24/2026, 9:43:29 AM
view raw JSON →