All 4 CVE vulnerabilities found in MCPHub, with AI-generated Chinese analysis, references, and POCs.
Vendor: samanhappy
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-13822 | Authentication bypass in MCPHub CWE-639 | 8.8 | - | 2026-04-14 |
| CVE-2025-11287 | samanhappy MCPHub sseService.ts handleSseConnectionfunction improper authentication CWE-287 | 7.3 | High | 2025-10-05 |
| CVE-2025-11286 | samanhappy MCPHub MCPRouter Service serverController.ts server-side request forgery CWE-918 | 4.7 | Medium | 2025-10-05 |
| CVE-2025-11285 | samanhappy MCPHub serverController.ts os command injection CWE-78 | 6.3 | Medium | 2025-10-05 |
All 4 known CVE vulnerabilities affecting MCPHub with full Chinese analysis, references, and POCs where available.