Related MCP Server Resources

Explore more AI models, providers, and integration options:

  • Explore AI Models
  • Explore AI Providers
  • Explore MCP Servers
  • LangDB Pricing
  • Documentation
  • AI Industry Blog
  • Kali Linux MCP Server
  • IR Toolshed MCP Server
  • SQLite MCP Server
  • Vertex AI MCP Server
  • MCP SSH Server
Back to MCP Servers
Vulnerable MCP Server

Vulnerable MCP Server

Public
evrenyal/mcpsecurity

An intentionally vulnerable Model Context Protocol server leveraging FastAPI, SQLite, Ollama LLM, and JSON-RPC to execute raw SQL and shell commands for advanced security research, including SQL injection and remote code execution testing.

python
0 tools
May 30, 2025
Updated Jun 4, 2025

Supercharge Your AI with Vulnerable MCP Server

MCP Server

Unlock the full potential of Vulnerable MCP Server through LangDB's AI Gateway. Get enterprise-grade security, analytics, and seamless integration with zero configuration.

Unified API Access
Complete Tracing
Instant Setup
Get Started Now

Free tier available • No credit card required

Instant Setup
99.9% Uptime
10,000+Monthly Requests

Vulnerable MCP Server

This project is an intentionally vulnerable MCP (Model Context Protocol) app, designed for security research.

DO NOT use in production environments.
It executes raw SQL and system commands with no authentication or restrictions.


⚙️ MCP SERVER

A command execution server that combines:

  • FastAPI for the HTTP interface
  • SQLite as a persistent database
  • Ollama LLM to interpret natural language queries
  • JSON-RPC as the main API protocol

This system routes natural language input to either SQL queries or shell commands, using a locally running LLM via Ollama.

Built to test SQL Injection (SQLi) and Remote Code Execution (RCE) vulnerabilities
via FastAPI, JSON-RPC, and LLM-based decision logic.


⚙️ WARNING: Security Notice

This app is intentionally insecure:

  • ❗ No authentication or access control
  • ❗ Accepts and executes raw SQL queries and shell commands
  • ❗ No input validation
  • ❗ LLM responses are blindly executed

Use only in isolated environments, CTFs, or research labs.


⚙️ Features

  • LLM-based decision logic for command routing (SQL or CLI)
  • Native execution of SQL and terminal commands
  • Auto-initializing SQLite database with sample data
  • Simple, pluggable JSON-RPC methods
  • Vulnerable by design — suitable for offensive/defensive testing

⚙️ Installation

git clone https://github.com/your-repo/mcp-vulnerable-app.git cd mcp-vulnerable-app docker-compose up --build docker network connect mcplab ollama docker network connect mcplab mcp_internal docker network connect mcplab mcp_remote
Publicly Shared Threads0

Discover shared experiences

Shared threads will appear here, showcasing real-world applications and insights from the community. Check back soon for updates!

Share your threads to help others
Related MCPs5
  • Kali Linux MCP Server
    Kali Linux MCP Server

    A Kali Linux-based Model Context Protocol (MCP) server enabling execution of returnable commands for...

    5 tools
    Added May 30, 2025
  • IR Toolshed MCP Server
    IR Toolshed MCP Server

    Provides a Model Context Protocol (MCP) service offering advanced network incident response tools in...

    Added May 30, 2025
  • SQLite MCP Server
    SQLite MCP Server

    A Model Context Protocol server enabling AI models to execute SQL queries, manage SQLite database sc...

    Added May 30, 2025
  • Vertex AI MCP Server
    Vertex AI MCP Server

    Provides a Model Context Protocol server enabling advanced interaction with Google Cloud's Vertex AI...

    20 tools
    Added May 30, 2025
  • MCP SSH Server
    MCP SSH Server

    Secure Model Context Protocol (MCP) SSH server enabling remote command execution, file and directory...

    Added May 30, 2025