CNNVD-202507-2815 Information

CNNVD ID

CNNVD-202507-2815

Related CVE

CVE-2025-53832

• CNNVD Published: 2025-07-21

Description (Chinese)

Translated Lara Translate MCP Server是Translated开源的一个应用程序。 Translated Lara Translate MCP Server 0.0.11及之前版本存在命令注入漏洞，该漏洞源于对输入参数清理不足，可能导致命令注入攻击。

Description (English)

Translated Lara Translate MCP Server is an application of Translated Open Source. Translated Lara Translate MCP Server 0.0.11 and earlier versions had a command-injecting loophole, which stemmed from inadequate clearance of input parameters and could lead to an order-injection attack.

Hazard Level

Medium

Vulnerability Type

命令注入

Affected Vendor

Translated

Published

2025-07-21

Last Modified

2026-02-24

References

https://github.com/translated/lara-mcp/commit/e534ef690adf390e4ac862a200b2a83f6cf45944 https://github.com/translated/lara-mcp/security/advisories/GHSA-xj5p-8h7g-76m7

Patch

https://github.com/translated/lara-mcp/tags