VYPR

Rijksmuseum Mcp

by R Huijts

Source repositories

CVEs (1)

  • CVE-2026-7653MedMay 2, 2026
    risk 0.41cvss 6.3epss 0.01

    A security flaw has been discovered in r-huijts mcp-server-rijksmuseum up to 1.0.4. Affected is the function open_image_in_browser of the file src/index.ts of the component MCP Interface. Performing a manipulation of the argument imageUrl results in os command injection. The…