CVE-2026-7159
HIGHdouinc mkdocs-mcp-plugin server.py list_documents path traversal
Title source: cnaDescription
A vulnerability was found in douinc mkdocs-mcp-plugin up to 0.4.1. This affects the function read_document/list_documents of the file server.py. Performing a manipulation of the argument docs_dir/file_path results in path traversal. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor confirms, that the "fix will be published within a few days."
References (6)
Core 6
Core References
Vdb Entry, Technical Description vdb-entry
technical-description
VDB-359758 | douinc mkdocs-mcp-plugin server.py list_documents path traversal
https://vuldb.com/vuln/359758
Third Party Advisory third-party-advisory
Submit #802063 | douinc mkdocs-mcp-plugin 0.4.1 Path Traversal
https://vuldb.com/submit/802063
Exploit exploit
issue-tracking
https://github.com/douinc/mkdocs-mcp-plugin/issues/6
Issue Tracking issue-tracking
https://github.com/douinc/mkdocs-mcp-plugin/issues/6#issuecomment-4223718119
Product product
https://github.com/douinc/mkdocs-mcp-plugin/
Signature, Permissions Required signature
permissions-required
VDB-359758 | CTI Indicators (IOB, IOC, TTP, IOA)
https://vuldb.com/vuln/359758/cti
Scores
CVSS v3
7.3
EPSS
0.0043
EPSS Percentile
33.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-22
Status
published
Products (3)
douinc/mkdocs-mcp-plugin
0.4.0
douinc/mkdocs-mcp-plugin
0.4.1
pypi/mkdocs-mcp-plugin
0 - 0.4.1PyPI
Published
Apr 27, 2026
Tracked Since
Apr 28, 2026