Related MCP Server Resources

Explore more AI models, providers, and integration options:

  • Explore AI Models
  • Explore AI Providers
  • Explore MCP Servers
  • LangDB Pricing
  • Documentation
  • AI Industry Blog
  • Jira MCP Server
  • SQLite MCP Server
  • AWS MCP Server
  • OpenAPI MCP Server
  • OpenSearch MCP Server
Back to MCP Servers
Vulnerable MCP Server

Vulnerable MCP Server

Public
evrenyal/mcpsecurity

Intentionally vulnerable Model Context Protocol (MCP) server designed for security research that processes natural language queries through an LLM to execute SQL queries or shell commands without restrictions.

Verified
python
0 tools
May 30, 2025
Updated May 30, 2025

Vulnerable MCP Server

This project is an intentionally vulnerable MCP (Model Context Protocol) app, designed for security research.

DO NOT use in production environments.
It executes raw SQL and system commands with no authentication or restrictions.

⚙️ MCP SERVER

A command execution server that combines:

  • FastAPI for the HTTP interface
  • SQLite as a persistent database
  • Ollama LLM to interpret natural language queries
  • JSON-RPC as the main API protocol

This system routes natural language input to either SQL queries or shell commands, using a locally running LLM via Ollama.

Built to test SQL Injection (SQLi) and Remote Code Execution (RCE) vulnerabilities
via FastAPI, JSON-RPC, and LLM-based decision logic.

⚙️ WARNING: Security Notice

This app is intentionally insecure:

  • ❗ No authentication or access control
  • ❗ Accepts and executes raw SQL queries and shell commands
  • ❗ No input validation
  • ❗ LLM responses are blindly executed

Use only in isolated environments, CTFs, or research labs.

⚙️ Features

  • LLM-based decision logic for command routing (SQL or CLI)
  • Native execution of SQL and terminal commands
  • Auto-initializing SQLite database with sample data
  • Simple, pluggable JSON-RPC methods
  • Vulnerable by design — suitable for offensive/defensive testing

⚙️ Installation

git clone https://github.com/your-repo/mcp-vulnerable-app.git
cd mcp-vulnerable-app

docker-compose up --build
docker network connect mcplab ollama
docker network connect mcplab mcp_internal
docker network connect mcplab mcp_remote
Publicly Shared Threads0

Discover shared experiences

Shared threads will appear here, showcasing real-world applications and insights from the community. Check back soon for updates!

Share your threads to help others
Related MCPs5
  • Jira MCP Server
    Jira MCP Server

    A Model Context Protocol server that enables AI assistants like Claude to interact with Jira, allowi...

    Added May 30, 2025
  • SQLite MCP Server
    SQLite MCP Server

    A Model Context Protocol server implementation that enables AI assistants to execute SQL queries and...

    Added May 30, 2025
  • AWS MCP Server
    AWS MCP Server

    A Model Context Protocol server implementation that enables Claude to perform AWS operations on S3 a...

    23 tools
    Added May 30, 2025
  • OpenAPI MCP Server
    OpenAPI MCP Server

    A Model Context Protocol Server that enables LLMs to interact with and execute REST API calls throug...

    Added May 30, 2025
  • OpenSearch MCP Server
    OpenSearch MCP Server

    A Model Context Protocol server implementation that enables natural language interactions with OpenS...

    6 tools
    Added May 30, 2025