CVE-2026-7061 | Toowiredd chatgpt-mcp-server up to 0.1.0 MCP/HTTP docker.service.ts os command injection

A vulnerability has been found in Toowiredd chatgpt-mcp-server up to 0.1.0 and classified as critical. Affected by this issue is some unknown functionality of the file src/services/docker.service.ts of the component MCP/HTTP. This manipulation causes os command injection.

This vulnerability is registered as CVE-2026-7061. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More