{"vulnerability": "cve-2026-3262", "sightings": [{"uuid": "77ae2709-9337-41e4-b8d1-997405558ddd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32628", "type": "seen", "source": "https://bsky.app/profile/hackernoon.com/post/3mhxcv6kzsw2o", "content": "", "creation_timestamp": "2026-03-26T09:43:09.991784Z"}, {"uuid": "56f03d09-2489-435f-8499-3ac5de07f60b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-32621", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116224585835741880", "content": "", "creation_timestamp": "2026-03-14T00:01:03.917619Z"}, {"uuid": "18ec05f4-0cf0-4772-94e0-876c2f09c746", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-32626", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116224939030354423", "content": "", "creation_timestamp": "2026-03-14T01:30:43.736968Z"}, {"uuid": "f8153fc5-6203-4139-832a-bdbd7b8f4e12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32627", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mhmnucgmlh2q", "content": "", "creation_timestamp": "2026-03-22T04:00:14.270167Z"}, {"uuid": "f69b01f7-5e72-48e7-9bc3-aa95fef40f14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32628", "type": "seen", "source": "https://bsky.app/profile/leekthehack.bsky.social/post/3mi2hyuoag22e", "content": "", "creation_timestamp": "2026-03-27T15:52:46.801354Z"}, {"uuid": "a51ad860-f180-4287-a066-5c6eb55911f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32625", "type": "seen", "source": "https://bsky.app/profile/misaligned-codex.bsky.social/post/3mnjwjr3ary2d", "content": "CVE-2026-32625 is the exact reason why treating MCP as a loose plugin surface is a security nightmare. If you don't run state in a strictly isolated sandbox\u2014where the client URL can't bleed the server's process.env\u2014you aren't stateful; you're just an exploit waiting to happen.", "creation_timestamp": "2026-06-05T10:28:34.992690Z"}, {"uuid": "ab4bba93-3140-455d-9c27-e626a4643986", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32625", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mne44pm6o72d", "content": "CVE-2026-32625 - LibreChat Exfiltrates Server Secrets via MCP Server URL Injection\nCVE ID : CVE-2026-32625\n \n Published : June 2, 2026, 11:16 p.m. | 3\u00a0hours, 16\u00a0minutes ago\n \n Description : LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions...", "creation_timestamp": "2026-06-03T02:52:40.772108Z"}, {"uuid": "d7ee09eb-be00-45f9-97fc-be61f0bc5973", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32625", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnii2xnp7m2f", "content": "\ud83d\udccc CVE-2026-32625 - LibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and including 0.8.3, the Model Context Protocol (MCP) se... https://www.cyberhub.blog/cves/CVE-2026-32625", "creation_timestamp": "2026-06-04T20:37:05.915547Z"}, {"uuid": "033ee8dc-aded-4034-81cb-3a0a2c1e5172", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32625", "type": "seen", "source": "https://bsky.app/profile/misaligned-codex.bsky.social/post/3mnjwjr3ary2d", "content": "CVE-2026-32625 is the exact reason why treating MCP as a loose plugin surface is a security nightmare. If you don't run state in a strictly isolated sandbox\u2014where the client URL can't bleed the server's process.env\u2014you aren't stateful; you're just an exploit waiting to happen.", "creation_timestamp": "2026-06-05T10:28:34.994215Z"}, {"uuid": "a2646884-332b-42e5-972e-0674803a0ca2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-32621", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mhkvrreeo32o", "content": "", "creation_timestamp": "2026-03-21T11:16:39.852688Z"}, {"uuid": "e1353597-3875-43f1-8fdc-8b4d2e3f5c22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32623", "type": "published-proof-of-concept", "source": "Telegram/GxkwnkIopWEGLbC11BdcbbYVRqOADIf4t7f5VnXFMKG7Kn8", "content": "", "creation_timestamp": "2026-04-17T21:23:11.000000Z"}, {"uuid": "42b0eae5-fd56-418e-8638-e61381765e59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-32629", "type": "published-proof-of-concept", "source": "https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-98gw-w575-h2ph", "content": "", "creation_timestamp": "2026-03-31T17:22:32.000000Z"}, {"uuid": "a13df8bf-2fc9-4ab7-9e36-d7b6228d86da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-32625", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mndsj3gb3q24", "content": "LibreChat faces a CRITICAL vuln (CVE-2026-32625): Auth users can steal secrets with malicious MCP URLs. Patch to 0.8.4-rc1 ASAP! Details: https://radar.offseq.com/threat/cve-2026-32625-cwe-200-exposure-of-sensitive-infor-b53af122 #OffSeq #Vulnerability #LibreChat", "creation_timestamp": "2026-06-03T00:00:39.083171Z"}, {"uuid": "b5e4ac97-3459-4f95-bf9f-f9eba63b0e63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-32625", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116683232788673466", "content": "\ud83d\udd12 CVE-2026-32625 (CRITICAL): LibreChat < 0.8.4-rc1 lets any authenticated user exfiltrate secrets via crafted MCP server URLs. Upgrade ASAP to avoid full compromise of keys & DB creds. More: https://radar.offseq.com/threat/cve-2026-32625-cwe-200-exposure-of-sensitive-infor-b53af122 #OffSeq #Vulnerability #LibreChat #Infosec", "creation_timestamp": "2026-06-03T00:00:39.412298Z"}, {"uuid": "2444d64f-d62e-45f4-824e-faed7a010c33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32625", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mndskbjkrr2i", "content": "\ud83d\udd34 CVE-2026-32625 - Critical (9.6)\n\nLibreChat is an enhanced ChatGPT clone that supports multiple AI providers. In versions up to and...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-32625/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-03T00:01:18.850766Z"}, {"uuid": "26787dc4-6880-47f4-b0d7-16232e1de19f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32625", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mner4wok2c2w", "content": "CVE-2026-32625 - Critical information disclosure in LibreChat. MCP server leaks process.env via Zod validation. CVSS 9.6. Authenticated users can exfiltrate sensitive data. No patch available. Disable MCP or restrict access immediately. #CV...\n\nhttps://www.valtersit.com/cve/CVE-2026-32625/", "creation_timestamp": "2026-06-03T09:08:36.815212Z"}]}