Soumettre #808260: huangjunsen0406 xiaozhi-mcphub 1.0.3 Path Traversalinformation

Titrehuangjunsen0406 xiaozhi-mcphub 1.0.3 Path Traversal
DescriptionA path traversal vulnerability (CWE-22) exists in huangjunsen0406/xiaozhi-mcphub 1.0.3. The DXT upload handler in src/controllers/dxtController.ts extracts .dxt archives and uses the name field from the untrusted manifest.json file to construct the extraction path using path.join. Because this value is not sanitized, an authenticated attacker can use traversal sequences (e.g., ../../) to extract files to arbitrary locations outside the intended directory.
La source⚠️ https://github.com/huangjunsen0406/xiaozhi-mcphub/issues/29
Utilisateur
 ccccccctfi (UID 97498)
Soumission20/04/2026 17:38 (il y a 2 mois)
Modérer07/05/2026 18:40 (17 days later)
StatutAccepté
Entrée VulDB361904 [huangjunsen0406 xiaozhi-mcphub jusqu’à 1.0.3 dxtController.ts manifest.name directory traversal]
Points20

PrécédentAperçuSuivant

Do you want to use VulDB in your project?

Use the official API to access entries easily!