55 matches found
CVE-2026-7318
A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function searchpapers of the file researchserver.py. The manipulation of the argument topic results in path traversal. Attacking locally is a requirement. The exploit is now public and may be used. The project was...
CVE-2026-7205
A vulnerability was identified in duartium papers-mcp-server 9ceb3812a6458ba7922ca24a7406f8807bc55598. Impacted is the function searchpapers of the file src/main.py. Such manipulation of the argument topic leads to path traversal. The attack may be launched remotely. The exploit is publicly...
CVE-2026-7384
A vulnerability was detected in ezequiroga mcp-bases 357ca19c7a49a9b9cb2ef639b366f03aba8bea39/c630b8ab0f970614d42da8e566e9c0d15a16414c. This impacts the function searchpapers of the file researchserver.py. Performing a manipulation of the argument topic results in path traversal. Remote...
CVE-2026-47068
Authorization Bypass Through User-Controlled Key vulnerability in phenixdigital phoenixstorybook allows cross-session PubSub topic injection via a URL query parameter. 'Elixir.PhoenixStorybook.Story.ComponentIframeLive':handleparams/3 in lib/phoenixstorybook/live/story/componentiframelive.ex read...
CVE-2026-47068
Authorization Bypass Through User-Controlled Key vulnerability in phenixdigital phoenixstorybook allows cross-session PubSub topic injection via a URL query parameter. 'Elixir.PhoenixStorybook.Story.ComponentIframeLive':handleparams/3 in lib/phoenixstorybook/live/story/componentiframelive.ex read...
CVE-2026-7384
A vulnerability was detected in ezequiroga mcp-bases 357ca19c7a49a9b9cb2ef639b366f03aba8bea39/c630b8ab0f970614d42da8e566e9c0d15a16414c. This impacts the function searchpapers of the file researchserver.py. Performing a manipulation of the argument topic results in path traversal. Remote...
MCP Research Assistant 路径遍历漏洞
MCP Research Assistant is a scholarly paper search and analysis tool developed by ezequiroga. MCP Research Assistant has a path traversal vulnerability, which stems from improper handling of the topic parameter in the searchpapers function within the researchserver.py file. This improper handling...
CVE-2026-7318
A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function searchpapers of the file researchserver.py. The manipulation of the argument topic results in path traversal. Attacking locally is a requirement. The exploit is now public and may be used. The project was...
EUVD-2026-26155
A vulnerability was detected in elie mcp-project 0.1.0. The affected element is the function searchpapers of the file researchserver.py. The manipulation of the argument topic results in path traversal. Attacking locally is a requirement. The exploit is now public and may be used. The project was...
Papers MCP Server 路径遍历漏洞
Papers MCP Server is a scholarly paper management and MCP protocol service tool developed by Byron Duarte. There is a path traversal vulnerability in Papers MCP Server. This vulnerability stems from the incorrect handling of the topic parameter in the searchpapers function in the src/main.py file...
MCP Research Server 路径遍历漏洞
MCP Research Server is a server for searching and extracting research papers, developed by Elie Schoppik. Version 0.1.0 of MCP Research Server has a path traversal vulnerability. This vulnerability stems from the topic parameter used in the searchpapers function within the researchserver.py file,...
EUVD-2005-3094
Malware in sbrugna...
EUVD-2007-1160
Malware in sbrugna...
EUVD-2007-3225
Malware in sbrugna...
EUVD-2008-0290
Malware in sbrugna...
EUVD-2009-4316
Malware in sbrugna...
EUVD-2008-4060
Malware in sbrugna...
EUVD-2022-4371
Malicious code in bioql PyPI...
CVE-2024-33122
Roothub v2.6 was discovered to contain a SQL injection vulnerability via the topic parameter in the list function...
MyAAC 跨站脚本漏洞
MyAAC is an OpenTibiaBR open source free and open source Automated Account Creator AAC written in PHP. A cross-site scripting vulnerability exists in MyAAC version 0.8.16 and prior versions, which stems from a cross-site scripting attack in the file system/pages/forum/newpost.php of the component...