CVE-2026-7588
Path Traversal in coding-standards-mcp via Language Parameter
Publication date: 2026-05-01
Last updated on: 2026-05-01
Assigner: VulDB
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ggerve | coding-standards-mcp | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-22 | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the ggerve coding-standards-mcp project, specifically in the function get_style_guide/get_best_practices within the file server.py. The issue arises from improper handling of the Language argument, which allows an attacker to perform a path traversal attack. This means an attacker can manipulate the input to access files or directories outside the intended scope on the server.
The attack can be launched remotely, and the exploit has already been made public.
How can this vulnerability impact me? :
This vulnerability can allow an attacker to access unauthorized files on the server by exploiting the path traversal flaw. This could lead to exposure of sensitive information or configuration files that should not be accessible, potentially compromising the security of the system.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability allows unauthorized reading of certain files outside the intended directory, which poses a medium confidentiality risk. This could potentially lead to exposure of sensitive information if such files contain personal or protected data.
However, there is no direct information provided about the impact on compliance with specific standards or regulations such as GDPR or HIPAA.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability can be detected by analyzing calls to the functions get_style_guide and get_best_practices in the coding-standards-mcp server, specifically looking for manipulation of the Language argument that leads to path traversal.
Detection can involve reviewing logs or monitoring requests that include suspicious path traversal patterns such as sequences like "../../../../" in the Language parameter.
Since the vulnerability involves reading files with suffixes like _style_guide.md or _best_practices.md outside the intended directory, commands or scripts that scan for such access patterns or unexpected file reads could help detect exploitation attempts.
Static code analysis or source code audit tools can be used to detect the vulnerable code usage.
Specific commands are not provided in the resources, but monitoring network traffic for requests to the vulnerable functions with suspicious Language parameters or scanning server logs for path traversal patterns is recommended.
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include restricting the Language input parameter to a fixed allowlist of known safe values.
Another important step is to validate the resolved file path after input processing to ensure it does not traverse outside the intended templates directory.
Replacing free-form Language input with an enumeration of known template names can prevent arbitrary path traversal.
Since the project uses rolling releases and no fixed version details are available, applying these mitigations in the source code or configuration is critical until an official patch or update is released.