mcp-server

CRITICAL: The Oracle DB server (`src/oracle_server.py`) is highly vulnerable to SQL injection. All database interaction tools (`query_data`, `insert_data`, `update_data`, `delete_data`, `inspect_table`, `inspect_package`, `inspect_procedure`) construct SQL queries by directly concatenating user-provided input via f-strings. This allows an attacker to execute arbitrary SQL commands by injecting malicious code into parameters such as `sql`, `table`, `columns`, `values`, `set_clause`, `where_clause`, `table_name`, `package_name`, or `procedure_name`. This could lead to unauthorized data access, modification, deletion, or even database compromise. The file server (`src/file_server.py`) uses `os.path.basename` to sanitize filenames, which is good for preventing directory traversal attacks. However, it allows writing arbitrary content to files without validation, which could be misused to store malicious scripts or fill up disk space. No hardcoded secrets were found as database credentials are sourced from environment variables.