GHSA-3pvh-63gf-j9mw: LangBot: Authenticated RCE Via MCP Configuration
Summary
Authenticated users of LangBot can run any command they want on the server by adding a malicious STDIO MCP (a plugin system that executes external programs) through the Extensions settings. An attacker who logs in (either through their own account or stolen credentials) can configure the MCP to run arbitrary commands, giving them complete control over the machine.
Vulnerability Details
EPSS: 0.0%
July 15, 2026
Classification
Taxonomy References
Affected Vendors
Affected Packages
Related Issues
Original source: https://github.com/advisories/GHSA-3pvh-63gf-j9mw
First tracked: July 15, 2026 at 02:01 PM
Classified by LLM (prompt v3) · confidence: 92%