Home

Description

mcp-gitlab contains a path traversal vulnerability in the job_id parameter of build/index.js that allows attackers to redirect GitLab API requests to arbitrary endpoints. Attackers can supply crafted job_id values like ../../../user to escape the intended path prefix and access arbitrary GitLab API resources using the operator's personal access token.

PUBLISHED Reserved 2026-07-09 | Published 2026-07-13 | Updated 2026-07-13 | Assigner VulnCheck




CRITICAL: 9.2CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

HIGH: 8.6CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Problem types

External Control of File Name or Path

Product status

Default status
affected

Any version before 2.1.18
affected

Credits

George Chen reporter

References

github.com/zereight/gitlab-mcp/issues/587 exploit

github.com/zereight/gitlab-mcp/issues/587 (Pull Issue) issue-tracking

github.com/zereight/gitlab-mcp (Product Details) product

github.com/...ommit/e2a81a047ab8750fa5bfa1763b5d85e5616f3994 (Patch Commit) patch

www.vulncheck.com/...lab-path-traversal-via-job-id-parameter third-party-advisory

cve.org (CVE-2026-61462)

nvd.nist.gov (CVE-2026-61462)

Download JSON