National Cyber Warfare Foundation (NCWF)

Critical fast-mcp-telegram Vulnerability Lets Attackers Access Telegram Session Without Token


0 user ratings
2026-07-06 11:21:09
milo
Red Team (CNA)

A critical vulnerability in fast-mcp-telegram (CVE-2026-52830, GHSA-rxw2-pc8j-vxwm) allows attackers to access a Telegram MCP session over HTTP without a valid bearer token by abusing a path-traversal flaw in how session files are resolved on disk. This breaks the intended high-entropy token boundary and exposes the default Telegram account to full message and MTProto access. Critical […]


The post Critical fast-mcp-telegram Vulnerability Lets Attackers Access Telegram Session Without Token appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Divya

Source: gbHackers
Source Link: https://gbhackers.com/critical-fast-mcp-telegram-vulnerability/


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Red Team (CNA)



Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.