I found (and reported to Anthropic [here](https://hackerone.com/reports/3325842)) that all major MCP Server SDKs were vulnerable to browser-based DNS rebinding allowing malicious websites to talk to locally or private network connected MCP servers. This is was in violation of the MCP specification : https://modelcontextprotocol.io/specification/2025-06-18/basic/transports#security-warning This resulted in a slew of CVEs assigned to every major SDK: - https://github.com/modelcontextprotocol/typescript-sdk/security/advisories/GHSA-w48q-cv73-mx4w - https://github.com/modelcontextprotocol/python-sdk/security/advisories/GHSA-9h52-p55h-vw2f - https://github.com/modelcontextprotocol/go-sdk/security/advisories/GHSA-xw59-hvm2-8pj6 - https://github.com/modelcontextprotocol/java-sdk/security/advisories/GHSA-8jxr-pr72-r468 It's not clear to me what version of the csharp-sdk this was fixed in as no CVE was assigned. Would the project maintainers behind this project be so kind as to do create a GitHub Security Advisory and request a CVE including the fix version and credit myself? Thanks team!