LupinLin jimeng-web-mcp Log Injection Vulnerability Allowing Sensitive Information Disclosure

Vulnerability

A vulnerability allowing the injection of sensitive information into log files has been identified in LupinLin1 jimeng-web-mcp version 2.1.2. This issue could lead to unauthorized exposure of confidential data if the log files are not adequately protected.

Impact

Exploitation of this vulnerability could result in the unauthorized disclosure of sensitive information contained in log files.

Added: Mar 9, 2026, 4:24 PM

Updated: Mar 9, 2026, 4:24 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.8

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.8

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

LupinLin jimeng-web-mcp Log Injection Vulnerability Allowing Sensitive Information Disclosure

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating