GHSA-vjqx-cfc4-9h6v
Suggest an improvement- Source
- https://github.com/advisories/GHSA-vjqx-cfc4-9h6v
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-vjqx-cfc4-9h6v/GHSA-vjqx-cfc4-9h6v.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-vjqx-cfc4-9h6v
- Aliases
- Published
- 2026-02-26T15:16:57Z
- Modified
- 2026-02-26T15:32:54.020636Z
- Severity
-
- 6.4 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N CVSS Calculator
- Summary
- mcp-server-git : Path traversal in git_add allows staging files outside repository boundaries
- Details
-
In
mcp-server-gitversions prior to 2026.1.14, thegit_addtool did not validate that file paths provided in the files argument were within the repository boundaries. The tool used GitPython'srepo.index.add(, which did not enforce working-tree boundary checks for relative paths. As a result, relative paths containing../sequences that resolved outside the repository were accepted and staged into the Git index, potentially allowing sensitive files to be exfiltrated via subsequent commit and push operations. The fix in PR #3164 switches torepo.git.add(), which delegates to the Git CLI and properly rejects out-of-tree paths. Users are advised to upgrade to 2026.1.14 or newer to remediate this issue.mcp-server-git thanks https://hackerone.com/0dd-g for reporting and contributing the fix.
- Database specific
{ "nvd_published_at": "2026-02-26T00:16:25Z", "github_reviewed_at": "2026-02-26T15:16:57Z", "github_reviewed": true, "severity": "MODERATE", "cwe_ids": [ "CWE-22" ] }- References
-
- https://github.com/modelcontextprotocol/servers/security/advisories/GHSA-vjqx-cfc4-9h6v
- https://nvd.nist.gov/vuln/detail/CVE-2026-27735
- https://github.com/modelcontextprotocol/servers/pull/3164
- https://github.com/modelcontextprotocol/servers/commit/862e717ff714987bd5577318df09858e14883863
- https://github.com/modelcontextprotocol/servers
Affected packages
PyPI / mcp-server-git
Package
- Name
- mcp-server-git
- View open source insights on deps.dev
- Purl
- pkg:pypi/mcp-server-git
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2026.1.14