Vulners
Lucene search
CVE-2026-44895 GitLab MCP Server: SSE transport has no authentication and wildcard CORS, exposing all GitLab tools
| Reporter | Title | Published | Views | Family All 12 |
|---|---|---|---|---|
 | CVE-2026-44895 | 26 May 202621:08 | โ | attackerkb |
 | CVE-2026-44895 | 9 May 202600:10 | โ | circl |
 | GitLab MCP Server ๅฎๅ จๆผๆด | 26 May 202600:00 | โ | cnnvd |
 | CVE-2026-44895 | 26 May 202621:08 | โ | cve |
 | EUVD-2026-32003 | 26 May 202621:08 | โ | euvd |
 | @yoda.digital/gitlab-mcp-server's SSE transport has no authentication and wildcard CORS, exposing all 86 GitLab tools | 9 May 202600:10 | โ | github |
 | CVE-2026-44895 | 26 May 202622:16 | โ | nvd |
 | GHSA-8JR5-6GVJ-RFPF @yoda.digital/gitlab-mcp-server's SSE transport has no authentication and wildcard CORS, exposing all 86 GitLab tools | 9 May 202600:10 | โ | osv |
 | PT-2026-39306 | 9 May 202600:00 | โ | ptsecurity |
 | CVE-2026-44895 | 5 Jun 202619:11 | โ | redhatcve |
10
[
{
"vendor": "yoda-digital",
"product": "mcp-gitlab-server",
"versions": [
{
"version": "< 0.6.0",
"status": "affected"
}
]
}
]Data
Build on a solid foundation withย Vulners data
Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data
Api
Power your application withย Vulners API
The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access
App
Assess and manage vulnerabilities withย Vulnersย tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
26 May 2026 21:08Current
CVSS 49.2
EPSS0.00392