cyberLOW2026-04-28 01:16 UTC

CVE-2026-7206 - dubydu sqlite-mcp entry.py extract_to_json sql injection

CVE ID :CVE-2026-7206 Published : April 28, 2026, 1:16 a.m. | 46 minutes ago Description :A security flaw has been discovered in dubydu sqlite-mcp up to 0.1.0. The affected element is the function extract_to_json of the file src/entry.py. Performing a manipulation of the argument output_filena

ORIGINAL SOURCE →via CVE Feed Latest

⚡ STAY AHEAD

Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.

GET THE SUNDAY BRIEFING →

RELATED · cyber

[CYBER] Shrinking snow forebodes water scarcity in Indus basin
[CYBER] Google, Meta and TikTok face new levy to pay for Australian news as Albanese reveals media plan
[CYBER] CVE-2026-7214 - eghuzefa engineer-your-data server.py file_inf path traversal
[CYBER] CVE-2026-7213 - ef10007 MLOps_MCP save_file Tool fastmcp_server.py path traversal
[CYBER] CVE-2026-7211 - dvladimirov MCP Git Search API mcp_server.py GitSearchRequest command injection
[CYBER] CVE-2026-7205 - duartium papers-mcp-server main.py search_papers path traversal

Editorial policy · Report a correction