49 matches found
EUVD-2026-32672
Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...
GHSA-7PF3-8XX7-RVHF MCP Toolbox for Databases vulnerable to DNS rebinding attacks
Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...
CVE-2026-9739
Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...
CVE-2026-9739
Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...
CVE-2026-9739
Vulnerable to DNS rebinding attacks when using SSE http://b/499408790. During the beta phase, we implemented allowed-origins and allowed-hosts flags to align with MCP security guidelines. However, the hardcoded Access-Control-Allow-Origin: header in the SSE initialization handler was inadvertentl...
CVE-2026-9739
CVE-2026-9739 describes a DNS rebinding vulnerability due to a hardcoded Access-Control-Allow-Origin: * in the SSE initialization handler, despite earlier attempts to align with MCP security guidelines using allowed-origins and allowed-hosts. The issue specifically affects users connecting via To...
CVE-2024-49772
creationtimestamp| type| source ---|---|--- 2024-11-05 21:25:55+00:00| seen| https://t.me/cvedetector/9949 2026-07-04 23:07:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mpu6gt73ce2l...
CVE-2024-51381
creationtimestamp| type| source ---|---|--- 2024-11-05 21:25:41+00:00| seen| https://t.me/cvedetector/9939...
CVE-2024-50120
creationtimestamp| type| source ---|---|--- 2024-11-05 19:44:28+00:00| seen| https://t.me/cvedetector/9924...
CVE-2024-50129
creationtimestamp| type| source ---|---|--- 2024-11-05 19:44:27+00:00| seen| https://t.me/cvedetector/9923...
CVE-2024-50133
creationtimestamp| type| source ---|---|--- 2024-11-05 19:44:13+00:00| seen| https://t.me/cvedetector/9914...
CVE-2024-9579
creationtimestamp| type| source ---|---|--- 2024-11-05 18:53:47+00:00| seen| https://t.me/cvedetector/9900...
CVE-2023-29119
creationtimestamp| type| source ---|---|--- 2024-11-05 18:03:35+00:00| seen| https://t.me/cvedetector/9897 2026-06-27 01:07:06+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mpabfzogz32n...
CVE-2023-29117
creationtimestamp| type| source ---|---|--- 2024-11-05 18:03:33+00:00| seen| https://t.me/cvedetector/9895 2026-07-04 23:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mpua4icw2r2l...
CVE-2023-29116
creationtimestamp| type| source ---|---|--- 2024-11-05 18:03:32+00:00| seen| https://t.me/cvedetector/9894...
CVE-2023-29126
creationtimestamp| type| source ---|---|--- 2024-11-05 18:03:28+00:00| seen| https://t.me/cvedetector/9893...
CVE-2023-29122
creationtimestamp| type| source ---|---|--- 2024-11-05 18:03:27+00:00| seen| https://t.me/cvedetector/9892...
CVE-2023-29120
creationtimestamp| type| source ---|---|--- 2024-11-05 18:03:25+00:00| seen| https://t.me/cvedetector/9889 2026-06-26 23:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mpa4f4jogq2y...
CVE-2023-29125
creationtimestamp| type| source ---|---|--- 2024-11-05 18:03:25+00:00| seen| https://t.me/cvedetector/9890 2026-06-30 05:37:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mpibvlifqd2u...
CVE-2024-51017
creationtimestamp| type| source ---|---|--- 2024-11-05 17:13:19+00:00| seen| https://t.me/cvedetector/9888...