spring-weather-mcp-server
by farisahmed123
Overview
A Spring Boot server providing weather data and a general database interaction API, following an MCP architectural pattern.
Installation
gradle bootRunSecurity Notes
CRITICAL SQL INJECTION VULNERABILITY: The DBController endpoints (e.g., /api/db/insert, /api/db/update, /api/db/delete, /api/db/query) accept raw SQL strings directly from the request body and execute them via JdbcTemplate without any sanitization or parameterized queries. This allows any user to inject arbitrary SQL commands, leading to full data compromise (read, modify, delete) and potentially remote code execution depending on the database configuration and permissions. The use of 'sa' user with an empty password for H2 by default further exacerbates this risk.
Similar Servers
spring-documentation-mcp-server
Provides a Model Context Protocol (MCP) server for comprehensive access to Spring ecosystem documentation, migration guides, code examples, language evolution, and Initializr metadata, primarily for AI agent consumption.
hello-mcp-server-kotlin
This server exposes a simple weather tool for consumption by an Artificial Intelligence model using the Spring AI Multimodal Conversation Protocol (MCP).
mcp_server
A Spring Boot application demonstrating Spring AI tool integration for retrieving weather information and a GraphQL client for fetching country data, acting as a service component for conversational AI.
McpWeatherServer
A server application designed to provide weather information to connected clients, likely within a Minecraft Coder Pack (MCP) environment.