LOW
alioshr
CVE published 2026-07-13
CVE-2026-15524
A path traversal vulnerability was detected in alioshr memory-bank-mcp up to 0.2.1/3.1. The issue affects an unknown part of the file list-project-files-validation-factory.ts. Manipulation of the argument projectName leads to path traversal. Local access is required to approach this attack. This vulnerability has a low CVSS score of 1.9 and is considered low severity. The CVE record was published on 2026- [truncated]