CVE-2025-59155 | yuna0x0 hackmd-mcp 1.4.x Model Context Protocol Query server-side request forgery (GHSA-g5cg-6c7v-mmpw)

A vulnerability marked as critical has been reported in yuna0x0 hackmd-mcp 1.4.x. This affects an unknown function of the component Model Context Protocol. The manipulation of the argument Query leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2025-59155. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More