GHSA-fvh2-gm75-j4j7: dynoxide: DNS rebinding and cross-origin CSRF via MCP HTTP transport

May 18, 2026

dynoxide’s MCP HTTP transport was vulnerable to DNS rebinding via its transitive rmcp dependency, plus a related cross-origin CSRF gap. A malicious web page could make the user’s browser send requests to a local dynoxide mcp --http or dynoxide serve --mcp server with a non-loopback Host header, which the server would then process. Affects 0.9.3 to 0.9.12. The stdio transport (dynoxide mcp without --http, which is the default) is not affected.

References

github.com/advisories/GHSA-fvh2-gm75-j4j7
github.com/nubo-db/dynoxide/releases/tag/v0.9.13
github.com/nubo-db/dynoxide/security/advisories/GHSA-fvh2-gm75-j4j7
rustsec.org/advisories/RUSTSEC-2026-0140.html

Code Behaviors & Features

Detect and mitigate GHSA-fvh2-gm75-j4j7 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →