CVE-2026-7384 | ezequiroga mcp-bases research_server.py search_papers topic path traversal

A vulnerability marked as critical has been reported in ezequiroga mcp-bases 357ca19c7a49a9b9cb2ef639b366f03aba8bea39/c630b8ab0f970614d42da8e566e9c0d15a16414c. This impacts the function search_papers of the file research_server.py. Performing a manipulation of the argument topic results in path traversal.

This vulnerability is known as CVE-2026-7384. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-7384 | ezequiroga mcp-bases research_server.py search_papers topic path traversal

Post correlati

CVE-2024-4143 | HP PC AMI BIOS Privilege Escalation

CVE-2024-32567 | Designinvento DirectoryPress Plugin up to 3.6.7 on WordPress cross site scripting

CVE-2023-31352 | AMD EPYC 9004 Processors/EPYC Embedded 9004 SEV Firmware memory corruption

CVE-2025-46320 | Claris FileMaker Server up to 21.1.6/22.0.3 cross site scripting