2 matches found
CVE-2026-34200
CVE-2026-34200 affects the Nhost CLI MCP server prior to v1.41.0. When explicitly configured to listen on a network port, the MCP server applies no inbound authentication and does not enforce strict CORS, allowing a malicious website on the same machine to issue cross-origin requests and use loca...
CVE-2026-34200
creationtimestamp| type| source ---|---|--- 2026-03-26 21:00:04+00:00| published-proof-of-concept| Telegram/EErZ2DHOfxeZ1Fjlnav1XzXAT9awV59GDGk5YYfJrqej7U 2026-03-31 17:25:19+00:00| seen| Telegram/nw5w-ohs-CK0Rjuv5tJSQsl41JpqhSQHTKMS4QN8816OY...