WebMCP Tool Surface Poisoning: Runtime Manipulation Attacks on LLM Agents

WebMCP is a newly emerging protocol that enables websites to expose tools directly to AI agents, bypassing traditional user interfaces and introducing new security risks. The dynamic exposure of agent-accessible tools in WebMCP expands the attack surface of web sessions, especially when third-par...

The vulnerability of the web interface of IBM OpenPages and IBM OpenPages with Watson allows a hacker to inject any command they desire.

The vulnerability of the IBM OpenPages and IBM OpenPages with Watson web interfaces relates to improper processing of output data for registration logs. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

The vulnerability of the snmptrapd daemon in the universal monitoring system Zabbix allows a intruder to replace the user interface.

The vulnerability of the snmptrapd daemon in the Zabbix monitoring system is related to improper processing of output data for registration logs. Exploiting this vulnerability allows a remote attacker to replace the user interface...

The vulnerability of the Ruby interpreter’s Rack module interface allows attackers to influence the integrity of the protected information.

The vulnerability of the Ruby interpreter’s Rack module interface is related to incorrect processing of output data for registration logs. Exploiting this vulnerability allows an attacker to influence the integrity of the protected information...

The vulnerability of the Passwords component in the Safari browser for macOS operating systems allows a hacker to bypass security restrictions.

The vulnerability of the Passwords component in the Safari browser on macOS operating systems involves the disclosure of information through registration log files. Exploiting this vulnerability can allow a malicious actor to bypass security restrictions remotely...

The vulnerability of the Monitor component of the IBM Maximo Application Suite, a platform for managing corporate assets based on artificial intelligence, allows a perpetrator to disclose protected information.

The vulnerability of the Monitor component of the IBM Maximo Application Suite, a platform for managing corporate assets based on artificial intelligence, is related to improper processing of output data from registration logs. Exploiting this vulnerability can allow an attacker to disclose...

The vulnerability of IBM Concert Software’s artificial intelligence-based automation tool lies in its improper handling of output data from registration logs, allowing a hacker to execute arbitrary commands.

The vulnerability of IBM Concert Software’s artificial intelligence-based automation tool is related to incorrect processing of output data for registration logs. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

The vulnerability of the ansible-core component in the Red Hat Ansible configuration management system allows a hacker to exploit it to disclose sensitive information.

The vulnerability of the ansible-core component in the Red Hat Ansible configuration management system is related to incorrect processing of output data for registration logs. Exploiting this vulnerability can allow attackers to disclose sensitive information that is protected by the system...

The vulnerability of the add-on for creating supplements to integrate external data sources with the Splunk Add-on Builder platform arises from improper processing of output data for registration logs. This allows a perpetrator to insert arbitrary information into the log files.

The vulnerability in the add-on for creating supplements to integrate external data sources with the Splunk Add-on Builder platform is related to incorrect processing of output data for registration logs. Exploiting this vulnerability allows a malicious actor to write arbitrary information into t...

The vulnerability of the Session Token Handler component in the application for creating supplements, related to integrating external data sources with the Splunk Add-on Builder platform, arises from improper processing of output data for registration logs. This allows a malicious actor to gain unauthorized access to edit the application.

The vulnerability of the Session Token Handler component in application add-ons for integrating external data sources with the Splunk Add-on Builder platform is related to improper processing of output data for registration logs. Exploiting this vulnerability allows a malicious actor, operating...

The vulnerability of FortiWeb web applications’ network firewalls arises from improper processing of output data for registration logs, allowing attackers to replace the traffic logs.

The vulnerability of FortiWeb web applications’ network firewalls is related to improper processing of output data for registration logs. Exploiting this vulnerability allows a malicious actor to replace traffic logs through a specially created web page...

The vulnerability in the send_to_nls.php script of the Nagios XI monitoring tool allows a hacker to disclose protected information and increase their privileges.

The vulnerability of the sendtonls.php script in the Nagios XI monitoring tool is related to improper processing of output data for registration logs. Exploiting this vulnerability can allow attackers to disclose sensitive information and enhance their privileges...

The vulnerability of the WebAuthn authentication mechanism in the Keycloak software for managing identification and access allows a perpetrator to influence the integrity of the protected information.

The vulnerability of the WebAuthn authentication mechanism for Keycloak’s identity management and access control lies in the improper processing of output data for registration logs. Exploiting this vulnerability could allow a malicious actor to influence the integrity of the protected informatio...

The vulnerability of the SCADA system SCADA Data Gateway (SDG) arises from improper processing of output data for registration logs, allowing a intruder to execute arbitrary code.

The vulnerability of the SCADA system SCADA Data Gateway SDG is related to the improper processing of output data for registration logs. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the root user...

The vulnerability of the Log Viewer component of the SAP NetWeaver AS for Java software platform allows a perpetrator to gain access to read, modify, or delete data.

The vulnerability of the Log Viewer component of the SAP NetWeaver AS for Java software platform is related to incorrect processing of data written to registration logs. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to read, modify, or delete data by...

The vulnerability of Splunk SOAR’s software for orchestration, automation, and incident response lies in its improper handling of output data from registration logs, allowing attackers to execute arbitrary code.

The vulnerability of Splunk SOAR’s software for orchestration, automation, and security incident response is related to improper processing of output data from registration logs. Exploiting this vulnerability can allow a perpetrator to execute arbitrary code...

The vulnerability of the microprogramming software of the Cognex 3D-A1000 Dimensioning System lies in the improper processing of output data for registration logs, allowing attackers to create arbitrary log files.

The vulnerability of the microprogramming software of the Cognex 3D-A1000 Dimensioning System is related to incorrect processing of output data for registration logs. Exploiting this vulnerability allows a malicious actor to create arbitrary log files remotely...

The vulnerability of the Ansible configuration management system arises from improper processing of output data for registration logs, allowing an attacker to access confidential information.

The vulnerability of the Ansible configuration management system is related to incorrect processing of output data for registration logs. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

The vulnerability of the library authentication function in WEBrick allows a hacker to execute arbitrary commands.

The vulnerability of the WEBrick library’s authentication function in the Ruby distribution is related to incorrect processing of output data for registration logs. Exploiting this vulnerability allows a malicious actor to inject control sequences and execute arbitrary commands in the user’s...