MCPHub Authentication Bypass Vulnerability

Vulnerability

An authentication bypass vulnerability has been identified in MCPHub versions prior to 0.11.0. Certain endpoints lack proper authentication middleware, enabling unauthenticated attackers to execute actions on behalf of other users, leveraging their privileges.

Impact

Exploitation of this vulnerability allows for unauthorized actions to be performed in the name of other users, potentially leading to misuse of their privileges.

Added: Apr 14, 2026, 11:18 AM

Updated: Apr 14, 2026, 11:18 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

5.5

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

5.5

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MCPHub Authentication Bypass Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating