| Title | douinc mkdocs-mcp-plugin 0.4.1 Path Traversal |
|---|
| Description | mkdocs-mcp-plugin is intended to read documentation from a MkDocs docs directory, but its MCP tools trust caller-supplied path components too broadly:
read_document(file_path, docs_dir="docs")
list_documents(docs_dir="docs")
The implementation uses Path(docs_dir) / file_path and Path(docs_dir).rglob("*.md") directly, without resolving the resulting path and verifying that it remains inside the intended documentation root. An attacker can therefore use .. segments or override docs_dir to access markdown files outside the project's docs directory.
|
|---|
| Source | ⚠️ https://github.com/douinc/mkdocs-mcp-plugin/issues/6 |
|---|
| User | SmallW (UID 97245) |
|---|
| Submission | 04/10/2026 13:41 (18 days ago) |
|---|
| Moderation | 04/26/2026 22:16 (16 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 359758 [douinc mkdocs-mcp-plugin up to 0.4.1 server.py read_document/list_documents docs_dir/file_path path traversal] |
|---|
| Points | 20 |
|---|