| शीर्षक | r-huijts mcp-server-rijksmuseum 1.0.4 Command Injection |
|---|
| विवरण | A command injection vulnerability (CWE-78) has been identified in mcp-server-rijksmuseum version 1.0.4, specifically within the open_image_in_browser MCP tool. The tool accepts a user‑supplied imageUrl argument, performs only a basic type check, and passes it unsanitized into a shell command string executed via child_process.exec. An attacker with network access to the MCP interface can inject shell metacharacters through the imageUrl parameter (e.g., "; id #) to execute arbitrary operating system commands with the privileges of the server process, leading to full host compromise, including data exposure, integrity loss, and service disruption. No fixed version is available at the time of reporting.
|
|---|
| स्रोत | ⚠️ https://github.com/r-huijts/rijksmuseum-mcp/issues/9 |
|---|
| उपयोगकर्ता | BruceJqs (UID 97404) |
|---|
| सबमिशन | 17/04/2026 09:45 AM (2 महीनों पहले) |
|---|
| संयम | 01/05/2026 08:11 PM (14 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 360778 [r-huijts mcp-server-rijksmuseum तक 1.0.4 MCP Interface src/index.ts open_image_in_browser imageUrl अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|