Lucene search
+L

6 matches found

EUVD
EUVD
added 2026/02/26 3:16 p.m.16 views

EUVD-2026-8770

mcp-server-git : Path traversal in gitadd allows staging files outside repository boundaries...

6.4CVSS5.2AI score0.00287EPSS
Exploits0References4
NVD
NVD
added 2026/02/26 12:16 a.m.9 views

CVE-2026-27735

Model Context Protocol Servers is a collection of reference implementations for the model context protocol MCP. In mcp-server-git versions prior to 2026.1.14, the gitadd tool did not validate that file paths provided in the files argument were within the repository boundaries. Because the tool us...

6.5CVSS0.00287EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/25 11:45 p.m.13 views

CVE-2026-27735

Model Context Protocol Servers is a collection of reference implementations for the model context protocol MCP. In mcp-server-git versions prior to 2026.1.14, the gitadd tool did not validate that file paths provided in the files argument were within the repository boundaries. Because the tool us...

6.4CVSS5.7AI score0.00287EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/02/25 11:45 p.m.27 views

CVE-2026-27735 mcp-server-git : Path traversal in git_add allows staging files outside repository boundaries

Model Context Protocol Servers is a collection of reference implementations for the model context protocol MCP. In mcp-server-git versions prior to 2026.1.14, the gitadd tool did not validate that file paths provided in the files argument were within the repository boundaries. Because the tool us...

6.4CVSS0.00287EPSS
Exploits0References2
CVE
CVE
added 2026/02/25 11:45 p.m.33 views

CVE-2026-27735

CVE-2026-27735 affects the Model Context Protocol Servers (mcp-server-git) prior to version 2026.1.14. The git_add tool did not validate that file paths in the files argument stay within the repository, because it used GitPython's repo.index.add() instead of the Git CLI. This allowed relative pat...

6.5CVSS5.4AI score0.00287EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/02/25 11:45 p.m.9 views

CVE-2026-27735 mcp-server-git : Path traversal in git_add allows staging files outside repository boundaries

Model Context Protocol Servers is a collection of reference implementations for the model context protocol MCP. In mcp-server-git versions prior to 2026.1.14, the gitadd tool did not validate that file paths provided in the files argument were within the repository boundaries. Because the tool us...

6.4CVSS5.5AI score0.00287EPSS
Exploits0References4
Rows per page
Query Builder