Hacking news

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

on January 20, 2026

The Hacker News

A set of three security vulnerabilities has been disclosed in mcp-server-git, the official Git Model Context Protocol (MCP) server maintained by Anthropic, that could be exploited to read or delete arbitrary files and execute code under certain conditions. "These flaws can be exploited through prompt injection, meaning an attacker who can influence what an AI assistant reads (a malicious README,

More From Author

Hacking news

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

March 18, 2026

The Hacker News

Hacking news

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

March 17, 2026

The Hacker News

Hacking news

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

March 17, 2026

The Hacker News

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

More From Author

Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23

Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading

The AI Fix #84: A hungry ghost trapped in a jar gains access to the Pentagon’s network

Leave a Reply Cancel reply