top of page
perceptive_background_267k.jpg

A flaw has been found in UsamaK98 python-notebook-mcp up to a05a232815809a7e425b5fa7be26e0d4369894c2. Impacted is the function create_notebook/read_notebook/edi…

Published:

4 May 2026 at 22:00:00

Alert date:

5 May 2026 at 20:13:49

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies, Supply Chain & Dependencies

A path traversal vulnerability has been discovered in UsamaK98 python-notebook-mcp affecting functions create_notebook, read_notebook, edit_cell, and add_cell in server.py. The flaw allows remote attackers to perform path traversal attacks. An exploit has been publicly released and is available for use. The vulnerability affects versions up to commit a05a232815809a7e425b5fa7be26e0d4369894c2. The project uses rolling releases with no specific version numbering. Despite early notification through an issue report, the project maintainers have not yet responded to address the vulnerability.

Technical details

Mitigation steps:

Affected products:

python-notebook-mcp

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-7810
https://github.com/UsamaK98/python-notebook-mcp/
https://github.com/UsamaK98/python-notebook-mcp/issues/5
https://vuldb.com/submit/807748
https://vuldb.com/vuln/361070
https://vuldb.com/vuln/361070/cti

Related CVE's:

Related threat actors:

IOC's:

a05a232815809a7e425b5fa7be26e0d4369894c2

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page