NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2025-13822

Summary	MCPHub in versions below 0.11.0 is vulnerable to authentication bypass. Some endpoints are not protected by authentication middleware, allowing an unauthenticated attacker to perform actions in the name of other users and using their privileges.
Publication Date	April 14, 2026, 8:16 p.m.
Registration Date	April 15, 2026, 11:39 a.m.
Last Update	April 18, 2026, 12:24 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://cert.pl/en/posts/2026/04/CVE-2025-13822	cvd@cert.pl
2	https://github.com/samanhappy/mcphub	cvd@cert.pl

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-639	ユーザ制御の鍵による認証回避	https://cwe.mitre.org/data/definitions/639.html