Skills
Three Critical MCP Database Server Vulnerabilities Disclosed: SQL Injection in Apache Doris, Auth Bypass in Pinot, Alibaba RDS Refuses to Patch
Akamai researcher Tomer Peled disclosed three MCP database server vulnerabilities on May 13. Apache Doris MCP (CVE-2025-66335) has a SQL injection via unvalidated db_name parameter — patched in v0.6.1. Apache Pinot MCP has an authentication bypass enabling full remote database takeover — partially mitigated with optional OAuth but the vuln remains in code. Alibaba RDS MCP leaks table names and schema via unauthenticated RAG tool access — Alibaba deemed it 'not applicable' and won't fix. Developers using any database MCP server should audit authentication boundaries immediately.
Source
↳ Follow the thread