Lucene search
K

13 matches found

EUVD
EUVD
added 2026/05/08 12:31 a.m.11 views

EUVD-2026-28473

A weakness has been identified in huangjunsen0406 xiaozhi-mcphub up to 1.0.3. This vulnerability affects unknown code of the file src/controllers/dxtController.ts. This manipulation of the argument manifest.name causes path traversal. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS6.4AI score0.00283EPSS
Exploits0References6
NVD
NVD
added 2026/05/08 12:16 a.m.28 views

CVE-2026-8116

A weakness has been identified in huangjunsen0406 xiaozhi-mcphub up to 1.0.3. This vulnerability affects unknown code of the file src/controllers/dxtController.ts. This manipulation of the argument manifest.name causes path traversal. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS0.00283EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.11 views

xiaozhi-mcphub 路径遍历漏洞

xiaozhi-mcphub is an MCP tool bridge and multi-endpoint management tool adapted to Xiaozhi AI platform by Junsen Huang's personal developer. A path traversal vulnerability exists in xiaozhi-mcphub 1.0.3 and earlier versions, which originates from the operation of the parameter manifest.name in th...

6.5CVSS6.6AI score0.00283EPSS
Exploits0References1
CVE
CVE
added 2026/05/07 11:30 p.m.22 views

CVE-2026-8116

CVE-2026-8116 affects the project “huangjunsen0406 xiaozhi-mcphub” up to version 1.0.3. The vulnerability is in the file src/controllers/dxtController.ts, where manipulation of the argument manifest.name enables path traversal. The attack could be initiated remotely, and the exploit has been publ...

6.5CVSS6.4AI score0.00283EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/07 11:30 p.m.11 views

CVE-2026-8116 huangjunsen0406 xiaozhi-mcphub dxtController.ts path traversal

A weakness has been identified in huangjunsen0406 xiaozhi-mcphub up to 1.0.3. This vulnerability affects unknown code of the file src/controllers/dxtController.ts. This manipulation of the argument manifest.name causes path traversal. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS6.4AI score0.00283EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/07 11:30 p.m.12 views

CVE-2026-8116

A weakness has been identified in huangjunsen0406 xiaozhi-mcphub up to 1.0.3. This vulnerability affects unknown code of the file src/controllers/dxtController.ts. This manipulation of the argument manifest.name causes path traversal. The attack may be initiated remotely. The exploit has been mad...

6.5CVSS5.6AI score0.00283EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.18 views

PT-2026-38601

Name of the Vulnerable Software and Affected Versions huangjunsen0406 xiaozhi-mcphub versions prior to 1.0.4 Description A path traversal issue exists in the src/controllers/dxtController.ts file. A remote attacker can exploit this by manipulating the manifest.name argument, allowing unauthorized...

6.5CVSS6.6AI score0.00283EPSS
Exploits0References11
Snyk
Snyk
added 2026/04/22 8:50 p.m.8 views

Directory Traversal

Overview @samanhappy/mcphub is an A hub server for mcp servers Affected versions of this package are vulnerable to Directory Traversal in the uploadMcpbFile process when the name field from the uploaded manifest.json is concatenated directly into file system paths without sanitization or...

8.1CVSS6.3AI score
Exploits0References2
OSV
OSV
added 2026/04/22 8:50 p.m.7 views

GHSA-P3H2-2J4P-P83G MCPHub has Path Traversal via Malicious MCPB Manifest Name

MCPB File Upload Handler extracts a ZIP file and reads manifest.json from it. The name field in the manifest is directly concatenated into a file path line 107 without any sanitization or path traversal character validation. An attacker can craft a malicious MCPB file where manifest.name is set t...

7.2CVSS5.9AI score
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/22 8:50 p.m.9 views

MCPHub has Path Traversal via Malicious MCPB Manifest Name

MCPB File Upload Handler extracts a ZIP file and reads manifest.json from it. The name field in the manifest is directly concatenated into a file path line 107 without any sanitization or path traversal character validation. An attacker can craft a malicious MCPB file where manifest.name is set t...

5.9AI score
Exploits0References3Affected Software1
OSV
OSV
added 2026/04/06 11:9 p.m.14 views

GHSA-R9X3-WX45-2V7F PraisonAI recipe registry publish path traversal allows out-of-root file write

Summary PraisonAI's recipe registry publish endpoint writes uploaded recipe bundles to a filesystem path derived from the bundle's internal manifest.json before it verifies that the manifest name and version match the HTTP route. A malicious publisher can place ../ traversal sequences in the bund...

7.1CVSS6.1AI score0.00334EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2026/04/06 11:9 p.m.9 views

PraisonAI recipe registry publish path traversal allows out-of-root file write

Summary PraisonAI's recipe registry publish endpoint writes uploaded recipe bundles to a filesystem path derived from the bundle's internal manifest.json before it verifies that the manifest name and version match the HTTP route. A malicious publisher can place ../ traversal sequences in the bund...

7.1CVSS6.1AI score0.00334EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.3 views

PT-2026-30767

Summary PraisonAI's recipe registry publish endpoint writes uploaded recipe bundles to a filesystem path derived from the bundle's internal manifest.json before it verifies that the manifest name and version match the HTTP route. A malicious publisher can place ../ traversal sequences in the bund...

7.1CVSS6.1AI score0.00334EPSS
Exploits1References6
Rows per page
Query Builder