| 标题 | elie mcp-project 0.1.0 Path Traversal |
|---|
| 描述 | MCP Research Server stores arXiv search results under PAPER_DIR = "papers". The search_papers(topic, max_results) tool incorrectly reuses the caller-controlled topic string as a filesystem directory name:
path = os.path.join(PAPER_DIR, topic.lower().replace(" ", "_"))
file_path = os.path.join(path, "papers_info.json")
Because the code only lowercases the string and replaces spaces, traversal sequences such as ../ remain intact. A malicious topic therefore escapes the intended papers/ directory and causes the server to create or overwrite papers_info.json in an attacker-chosen location on the host.
|
|---|
| 来源 | ⚠️ https://github.com/elie/mcp-research-server/issues/1 |
|---|
| 用户 | LittleW (UID 97283) |
|---|
| 提交 | 2026-04-12 12時14分 (2 月前) |
|---|
| 管理 | 2026-04-28 15時17分 (16 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 359971 [elie mcp-project 0.1.0 research_server.py search_papers topic 目录遍历] |
|---|
| 积分 | 20 |
|---|