Submit #825416: j3k0 mcp-google-workspace 1.0.0 Arbitrary File Writeinfo

Titlej3k0 mcp-google-workspace 1.0.0 Arbitrary File Write
DescriptionAn arbitrary file write vulnerability has been identified in mcp-google-workspace. Gmail attachment retrieval and bulk-save logic accepts caller-controlled local save paths and passes them to fs.writeFileSync after a helper named validateSavePath. The helper resolves the path but does not enforce a safe base directory or approved downloads directory. An attacker able to invoke the affected MCP tool can write decoded attachment content to arbitrary local paths writable by the server process.
Source⚠️ https://github.com/j3k0/mcp-google-workspace/issues/19
User
 ccccccctfi (UID 97498)
Submission05/11/2026 10:27 (2 months ago)
Moderation05/31/2026 18:06 (20 days later)
StatusAccepted
VulDB entry367570 [j3k0 mcp-google-workspace up to 831790e7d5c2663325733d9f5579cc339a267c4c MCP Gmail Tool src/tools/gmail.ts saveToDisk access control]
Points20

Do you need the next level of professionalism?

Upgrade your account now!