Description
A vulnerability was determined in ShadowCloneLabs GlutamateMCPServers up to e2de73280b01e5d943593dd1aa2c01c5b9112f78. Affected by this issue is some unknown functionality of the file src/puppeteer/index.ts of the component puppeteer_navigate. Executing a manipulation of the argument url can lead to server-side request forgery. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed. The project was informed of the problem early through an issue report but has not responded yet.
Published: 2026-04-27
Score: 6.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Server Side Request Forgery
Action: Assess Impact
AI Analysis

Impact

An attacker can manipulate the URL argument passed to the puppeteer_navigate function in src/puppeteer/index.ts and force the server to make outbound HTTP requests to arbitrary destinations. This server‑side request forgery can expose internal network services, exfiltrate data, or facilitate further lateral movement. The vulnerability is exploitable remotely and has been publicly disclosed, indicating that malicious actors could already target vulnerable instances.

Affected Systems

The flaw affects ShadowCloneLabs GlutamateMCPServers up to commit e2de73280b01e5d943593dd1aa2c01c5b9112f78. Because the project uses a rolling‑release continuous delivery model, no specific version numbers are disclosed; any deployment running the affected code base is potentially vulnerable.

Risk and Exploitability

The CVSS score of 6.9 reflects a moderate severity, and the EPSS score of < 1 % indicates a very low probability of exploitation at this time. The vulnerability is not listed in the CISA KEV catalog. Exploitation would require the attacker to supply a crafted URL to the vulnerable endpoint, which can be performed from an arbitrary remote location, then the server will issue an outbound request.

Generated by OpenCVE AI on April 28, 2026 at 13:10 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to a version of GlutamateMCPServers released after the commit e2de73280b01e5d943593dd1aa2c01c5b9112f78 that contains the SSRF fix (if available).
  • Implement outbound request filtering or a whitelist that limits which external hosts the server may contact, thereby mitigating potential SSRF exploitation.
  • If the puppeteer_navigate feature is not needed, disable or remove the function to eliminate the vulnerable code path.

Generated by OpenCVE AI on April 28, 2026 at 13:10 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 01 May 2026 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Shadowclonelabs glutamate Mcp Servers
CPEs cpe:2.3:a:shadowclonelabs:glutamate_mcp_servers:*:*:*:*:*:*:*:*
Vendors & Products Shadowclonelabs glutamate Mcp Servers

Mon, 27 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Shadowclonelabs
Shadowclonelabs glutamatemcpservers
Vendors & Products Shadowclonelabs
Shadowclonelabs glutamatemcpservers

Mon, 27 Apr 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 27 Apr 2026 06:30:00 +0000

Type Values Removed Values Added
Description A vulnerability was determined in ShadowCloneLabs GlutamateMCPServers up to e2de73280b01e5d943593dd1aa2c01c5b9112f78. Affected by this issue is some unknown functionality of the file src/puppeteer/index.ts of the component puppeteer_navigate. Executing a manipulation of the argument url can lead to server-side request forgery. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized. This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed. The project was informed of the problem early through an issue report but has not responded yet.
Title ShadowCloneLabs GlutamateMCPServers puppeteer_navigate index.ts server-side request forgery
Weaknesses CWE-918
References
Metrics cvssV2_0

{'score': 7.5, 'vector': 'AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 7.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Shadowclonelabs Glutamate Mcp Servers Glutamatemcpservers
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-04-27T13:29:31.941Z

Reserved: 2026-04-26T08:52:00.971Z

Link: CVE-2026-7094

cve-icon Vulnrichment

Updated: 2026-04-27T13:13:08.417Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-27T07:16:04.893

Modified: 2026-05-01T20:30:09.597

Link: CVE-2026-7094

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-28T13:15:31Z

Weaknesses