CVE-2026-5470 - Vulnerability Details

- mixelpixx Google-Research-MCP Model Context Protocol content-extractor.service.ts extractContent server-side request forgery

Description

A security vulnerability has been detected in mixelpixx Google-Research-MCP 1e062d7bd887bfe5f6e582b6cc288bb897b35cf2/ca613b736ab787bc926932f59cddc69457185a83. This issue affects the function extractContent of the file src/services/content-extractor.service.ts of the component Model Context Protocol Handler. The manipulation of the argument URL leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available. The vendor was contacted early about this disclosure but did not respond in any way.

Published: 2026-04-03

Score: 5.3 Medium

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability lies in the extractContent function of the Model Context Protocol Handler; manipulating the URL argument causes the server to make internal HTTP requests. This represents a server-side request forgery (SSRF) weakness, categorized as CWE-918, allowing a remote attacker to direct the server to query arbitrary URLs, potentially accessing internal resources or exfiltrating sensitive data.

Affected Systems

The affected product is mixelpixx Google‑Research‑MCP. No specific version numbers are available because the project uses a rolling release model, so any release that includes the vulnerable code may be impacted.

Risk and Exploitability

The CVSS score is 5.3, indicating a moderate severity. The EPSS score is not available and the vulnerability is not listed in KEV. Exploitation can be initiated remotely by supplying a crafted URL to the extractContent call, leading the server to send requests to attacker-controlled or internal endpoints. Given the lack of additional constraints, the risk to systems that do not update remains considerable.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

mixelpixx

Google-Research-MCP

affected

Version	Status	Constraints
`1e062d7bd887bfe5f6e582b6cc288bb897b35cf2`	affected	—
`ca613b736ab787bc926932f59cddc69457185a83`	affected	—

No data.

Vendor Product Confidence Versions

Mixelpixx

Google-research-mcp

100%

Version	Status	Scheme	Platform
`1e062d7bd887bfe5f6e582b6cc288bb897b35cf2`	affected	code_commit	—
`ca613b736ab787bc926932f59cddc69457185a83`	affected	code_commit	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the latest update released by mixelpixx for Google‑Research‑MCP
Verify that the update removes the SSRF vulnerability; if no update is available, restrict access to the extractContent API to trusted networks

Generated by OpenCVE AI on April 3, 2026 at 18:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

No EPSS score available.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://github.com/wing3e/public_exp/issues/21
https://vuldb.com/submit/781778
https://vuldb.com/vuln/355074
https://vuldb.com/vuln/355074/cti

History

Fri, 03 Apr 2026 21:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Mixelpixx Mixelpixx google-research-mcp
Vendors & Products		Mixelpixx Mixelpixx google-research-mcp

Fri, 03 Apr 2026 19:00:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 03 Apr 2026 16:30:00 +0000

Type	Values Removed	Values Added
Description		A security vulnerability has been detected in mixelpixx Google-Research-MCP 1e062d7bd887bfe5f6e582b6cc288bb897b35cf2/ca613b736ab787bc926932f59cddc69457185a83. This issue affects the function extractContent of the file src/services/content-extractor.service.ts of the component Model Context Protocol Handler. The manipulation of the argument URL leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed publicly and may be used. This product uses a rolling release model to deliver continuous updates. As a result, specific version information for affected or updated releases is not available. The vendor was contacted early about this disclosure but did not respond in any way.
Title		mixelpixx Google-Research-MCP Model Context Protocol content-extractor.service.ts extractContent server-side request forgery
Weaknesses		CWE-918
References		https://github.com/wing3e/public_exp/issues/21 https://vuldb.com/submit/781778 https://vuldb.com/vuln/355074 https://vuldb.com/vuln/355074/cti
Metrics		cvssV2_0 `{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Mixelpixx Google-research-mcp

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-04-03T15:30:13.946Z

Updated: 2026-04-03T17:32:58.474Z

Reserved: 2026-04-03T07:29:51.893Z

Link: CVE-2026-5470

Vulnrichment

Updated: 2026-04-03T17:32:53.241Z

NVD

Status : Received

Published: 2026-04-03T16:16:43.787

Modified: 2026-04-03T16:16:43.787

Link: CVE-2026-5470

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-03T21:15:17Z

Weaknesses

CWE-918

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object