Understanding CVE-2026-14699 and Its Impact The CVE-2026-14699 vulnerability has been identified in the zcaceres markdownify-mcp up to version 1.1.0. This flaw primarily resides in the function assertPathAllowed located in src/Markdownify.ts. A successful exploitation can enable symlink following, which poses a significant risk to server security. Why This Matters for Server Administrators For system administrators and […]













