CVE-2026-7158 - dmitryglhf mcp-url-downloader server.py _validate_url_safe server-side request forgery
CVE ID :CVE-2026-7158 Published : April 27, 2026, 9:16 p.m. | 45 minutes ago Description :A vulnerability has been found in dmitryglhf mcp-url-downloader up to 4b8cf2de55f6e8864a77d108e8a94a5b8e4394c6. Affected by this issue is the function _validate_url_safe of the file src/mcp_url_downloader
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] 72% of enterprise users have at least one browser extension with a known CVE. Pulled the numbers on our org and it tracks.
- [CYBER] Robinhood account creation flaw abused to send phishing emails
- [CYBER] How we self-pentested ciguard — Cycle 1: four findings, four advisories, two days
- [CYBER] Laptop Security Recommendations for Keeping Sensitive Files Safe?
- [CYBER] Vulnerability Summary for the Week of April 20, 2026
- [CYBER] CVE-2026-7177 - ChatGPTNextWeb NextChat route.ts proxyHandler server-side request forgery