mcp-server
by Jaizkibel
Overview
Provides a Model Context Protocol server that offers AI assistants tools for web search, database interaction, and Java project source/Javadoc retrieval in a secure environment.
Installation
python mcp_server_low.py [--project-folder /path/to/workspace] [--db-name musiciandb] [--build-tool Maven|Gradle]Security Notes
Critical SQL Injection vulnerability: The `execute_sql_statement` function directly executes user-provided SQL queries without parameterization, allowing for arbitrary SQL commands to be run on configured PostgreSQL or SQL Server databases. Network vulnerability: The HTTP client used for web searches and `http_get_request` disables SSL certificate validation (`verify=False`), making it vulnerable to Man-in-the-Middle attacks. Potential browser command injection/arbitrary file access: The `open_in_browser` tool uses `subprocess.Popen` with weakly validated URLs, potentially allowing opening of local files or execution of other commands.
Similar Servers
Awesome-MCP-Servers
Cataloging and describing Model Context Protocol (MCP) servers, tools, frameworks, clients, and utilities, which enable AI models to interact with various local and remote resources.
HydrusMCPServer
Connects an LLM to the Hydrus Network media manager for sophisticated tag and file management through a Dockerized MCP server.
oh-no-mcp-server
Provides a Model Context Protocol (MCP) server for deep analysis of code performance, identifying bottlenecks, memory issues, algorithm complexity, and suggesting optimizations across code snippets, single files, or entire directories.
mcp-server
Provides server functionality likely related to the Minecraft Protocol (MCP), enabling multiplayer interaction or specific game services.