Zcaceres

zcaceres

2 CVEs • 2 products

Products (2)

Click to collapse

Toggle

Fetch Mcp Server

fetch_mcp_server

1 CVE

Markdownify Mcp Server

markdownify_mcp_server

1 CVE

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-65512 1Zcaceres 1Markdownify Mcp Server Jan 2, 2026 Dec 10, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 A Server-Side Request Forgery (SSRF) vulnerability was discovered in the webpage-to-markdown conversion feature of markdownify-mcp v0.0.2 and before. This vulnerability allows an attacker to bypass private IP restriction...Show more A Server-Side Request Forgery (SSRF) vulnerability was discovered in the webpage-to-markdown conversion feature of markdownify-mcp v0.0.2 and before. This vulnerability allows an attacker to bypass private IP restrictions through hostname-based bypass and HTTP redirect chains, enabling access to internal network services.Show less
CVE-2025-65513 1Zcaceres 1Fetch Mcp Server Jan 2, 2026 Dec 9, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 fetch-mcp v1.0.2 and before is vulnerable to Server-Side Request Forgery (SSRF) vulnerability, which allows attackers to bypass private IP validation and access internal network resources.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2025-65512

1Zcaceres

1Markdownify Mcp Server

Jan 2, 2026

Dec 10, 2025

N/A· v4

7.5 HIGH· v3

N/A· v2

A Server-Side Request Forgery (SSRF) vulnerability was discovered in the webpage-to-markdown conversion feature of markdownify-mcp v0.0.2 and before. This vulnerability allows an attacker to bypass private IP restrictions through hostname-based bypass and HTTP redirect chains, enabling access to internal network services.Show less

CVE-2025-65513

1Zcaceres

1Fetch Mcp Server

Jan 2, 2026

Dec 9, 2025

N/A· v4

7.5 HIGH· v3

N/A· v2

fetch-mcp v1.0.2 and before is vulnerable to Server-Side Request Forgery (SSRF) vulnerability, which allows attackers to bypass private IP validation and access internal network resources.