Critical GitHub MCP Server Vulnerability Allows Unauthorized Access to Private Repositories

A critical vulnerability in the widely-used GitHub MCP integration, boasting over 14,000 stars on GitHub, has been uncovered by Invariant Labs, posing a severe risk to users’ private repository data. This flaw, identified through Invariant’s automated security scanners, enables attackers to manipulate a user’s agent via a malicious GitHub Issue, coercing it into leaking sensitive […] The post Critical GitHub MCP Server Vulnerability Allows Unauthorized Access to Private Repositories appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/critical-github-mcp-server-vulnerability/