VYPR

Apify Mcp Server

by Apify

Source repositories

CVEs (1)

  • CVE-2026-46341May 19, 2026
    risk 0.00cvss epss 0.00

    ### Summary The `fetch-apify-docs` tool validates URLs against a domain allowlist using `String.startsWith()` instead of proper URL hostname comparison. This allows bypass via attacker-controlled subdomains (e.g., `https://docs.apify.com.evil.com/`), enabling the tool to fetch…