CVE-2026-7318 | elie mcp-project 0.1.0 research_server.py search_papers topic path traversal

Inserito da Angelo Barbosa | Apr 28, 2026 | CVE

A vulnerability, which was classified as critical, was found in elie mcp-project 0.1.0. The affected element is the function search_papers of the file research_server.py. The manipulation of the argument topic results in path traversal.

This vulnerability is known as CVE-2026-7318. Attacking locally is a requirement. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-7318 | elie mcp-project 0.1.0 research_server.py search_papers topic path traversal

Post correlati

CVE-2026-3369 | codesolz Better Find and Replace Plugin up to 1.7.9 on WordPress Uploaded Image Title cross site scripting (EUVD-2026-23221)

CVE-2025-1108 | Impronta Janto 4.3r10.cks/4.3r11 POST Request /public/cgi/Gateway.php data authenticity

CVE-2024-12520 | Dominion Plugin up to 2.2.2 on WordPress cross site scripting

CVE-2025-4247 | SourceCodester Simple To-Do List System 1.0 /delete_task.php ID sql injection