Dayoooun hwpx-mcp Path Traversal Vulnerability in MCP Interface Allowing Arbitrary File Write

A path traversal vulnerability allowing arbitrary file write has been identified in Dayoooun hwpx-mcp version 0.2.0. This issue arises in the MCP Interface component, specifically within the 'save_document', 'export_to_text', and 'export_to_html' functions. The vulnerability allows remote exploitation by manipulating the 'output_path' argument, enabling writes to arbitrary locations on the server's filesystem. The issue has been publicly disclosed, and the project maintainers have not yet responded to reports about this vulnerability.

Impact

Exploitation of this vulnerability allows for arbitrary file creation or overwriting of files at locations writable by the MCP server process. This could lead to corruption of application data or configuration, disruption of the MCP server or host application, and potential integrity loss of HWPX documents.

Reproduction

To reproduce this vulnerability, use a client that can interact with the MCP server, such as the MCP Inspector or a configured instance of Claude. First, create a new HWPX document using the 'create_document' tool. Then, save the document using the 'save_document' tool, specifying an 'output_path' that traverses directories or uses an absolute path. After executing the command, verify that the file has been created or overwritten at the specified location.

Remediation

It is recommended to update the MCP server to a version that addresses this vulnerability. Until a patch is available, restrict access to the MCP server to trusted users and clients, and run the server under a low-privilege account with limited writable directories.