Y
Hacker News
new
|
ask
|
show
|
jobs
by
admiralrohan
345 days ago
Yes it's dev tool but when dev asks for data from DB through MCP it's accidentally running a sql injected by the attacker and reveals information to them.