2 matches found
CVE-2026-7755
creationtimestamp| type| source ---|---|--- 2026-07-17 19:58:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mqujxuzkyg2x 2026-07-17 22:08:31+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116937596000823068...
Security Bulletin: MCP Server Configuration Validator Bypass via File Upload API
Summary A validation bypass vulnerability existed in the File Manager API that could allow an authenticated attacker to upload malicious MCP server configurations. The file upload endpoint accepted mcpservers.json files without invoking the MCPServerConfig validator, while the structured MCP API...