High severity7.3NVD Advisory· Published May 5, 2026· Updated May 5, 2026

CVE-2026-7810

Description

A flaw has been found in UsamaK98 python-notebook-mcp up to a05a232815809a7e425b5fa7be26e0d4369894c2. Impacted is the function create_notebook/read_notebook/edit_cell/add_cell of the file server.py. This manipulation causes path traversal. It is possible to initiate the attack remotely. The exploit has been published and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The project was informed of the problem early through an issue report but has not responded yet.

Affected products

UsamaK98/Python Notebook Mcpreferences2 versions
(expand)+ 1 more
- (no CPE)
- (no CPE)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/UsamaK98/python-notebook-mcp/issues/5nvd
vuldb.com/submit/807748nvd
vuldb.com/vuln/361070nvd
vuldb.com/vuln/361070/ctinvd

News mentions

No linked articles in our index yet.

cvss	0.474
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000