CVE-2026-7788 in MCP-Docusaurusthông tin

Tóm tắt

Bởi MITRE • 05/05/2026

A security flaw has been discovered in Axle-Bucamp MCP-Docusaurus up to 404bc028e15ec304c9a045528560f4b5f27a17e0. The affected element is the function update_document/continue_document/delete_document/get_content of the file app/routes/document.py. Performing a manipulation of the argument DOCS_DIR/path results in path traversal. The attack may be initiated remotely. The exploit has been released to the public and may be used for attacks. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available. The project was informed of the problem early through an issue report but has not responded yet.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

chịu trách nhiệm

VulDB

Tiết lộ

05/05/2026

Kiểm duyệt

được chấp nhận

mục

VDB-360994

CPE

sẵn sàng

CWE

CWE-22 (Đã xác nhận)

Khai thác

Tải xuống

CVSS

7.3 (VulDB)

EPSS

0.00060

KEV

không

Các hoạt động

rất thấp

ngành

Police, Pharma, ...

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7788
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7788
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7788/

◂ Trước Tổng Quan Tiếp theo ▸

Want to know what is going to be exploited?

We predict KEV entries!