6 matches found
EUVD-2026-31706
A vulnerability has been found in c-rick jimeng-mcp 1.10.0. Affected by this vulnerability is the function getFileContent/uploadCoverFile/generateImage/generateVideo of the file src/api.ts. The manipulation of the argument filePath leads to path traversal. The attack may be initiated remotely. Th...
CVE-2026-9473 c-rick jimeng-mcp api.ts generateVideo path traversal
A vulnerability has been found in c-rick jimeng-mcp 1.10.0. Affected by this vulnerability is the function getFileContent/uploadCoverFile/generateImage/generateVideo of the file src/api.ts. The manipulation of the argument filePath leads to path traversal. The attack may be initiated remotely. Th...
CVE-2026-9473
CVE-2026-9473 affects c-rick jimeng-mcp 1.10.0. The vulnerability lies in src/api.ts functions getFileContent, uploadCoverFile, generateImage, and generateVideo where manipulating the argument filePath enables path traversal. The attack could be remote; exploit has been disclosed publicly and the...
Jimeng MCP 路径遍历漏洞
Jimeng MCP is an MCP server for cc individual developers that integrates i.e. Dream AI image and video generation. Jimeng MCP version 1.10.0 has a path traversal vulnerability , the vulnerability stems from the file src/api.ts function getFileContent/uploadCoverFile/generateImage/generateVideo on...
EUVD-2024-35504
Malicious code in bioql PyPI...
Code-Projects Online Appointment Booking System 注入漏洞
Online Appointment Booking System is an online appointment booking system. The Online Appointment Booking System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter uname/psw in the file /cover.php. The...