[Skip to main content](https://glama.ai/mcp/servers/@pfelilpe/<#main-content>)
[Glama](https://glama.ai/mcp/servers/@pfelilpe/</>)
[Chat](https://glama.ai/mcp/servers/@pfelilpe/</chat>)[MCP](https://glama.ai/mcp/servers/@pfelilpe/</mcp>)[Gateway](https://glama.ai/mcp/servers/@pfelilpe/</gateway>)[Models](https://glama.ai/mcp/servers/@pfelilpe/</models>)[Pricing](https://glama.ai/mcp/servers/@pfelilpe/</pricing>)[Community](https://glama.ai/mcp/servers/@pfelilpe/</discord>)[Sign In](https://glama.ai/mcp/servers/@pfelilpe/</sign-in>)
[Chat](https://glama.ai/mcp/servers/@pfelilpe/</chat>)MCP[Gateway](https://glama.ai/mcp/servers/@pfelilpe/</gateway>)[Models](https://glama.ai/mcp/servers/@pfelilpe/</models>)[Pricing](https://glama.ai/mcp/servers/@pfelilpe/</pricing>)[Community](https://glama.ai/mcp/servers/@pfelilpe/</discord>)[Sign In](https://glama.ai/mcp/servers/@pfelilpe/</sign-in>)
[Glama](https://glama.ai/mcp/servers/@pfelilpe/</>)
[MCP](https://glama.ai/mcp/servers/@pfelilpe/</mcp>)
[Servers](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers>)
# Damn Vulnerable MCP Server Demo
by [pfelilpe](https://glama.ai/mcp/servers/@pfelilpe/<https:/github.com/pfelilpe>)
Claim
[GitHub](https://glama.ai/mcp/servers/@pfelilpe/<https:/github.com/pfelilpe/DVMCP>)
  * [Code Execution](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/code-execution>)
  * [Security](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/security-and-iam>)
  * [Developer Tools](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/developer-tools>)


[Python](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers?attributes=language%3Apython>)
MIT License
[Overview](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP>)[InspectNew](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP/inspect>)[Schema](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP/schema>)[Related Servers](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP/related-servers>)[Reviews](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP/reviews>)[Score](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP/score>)
[Need Help?](https://glama.ai/mcp/servers/@pfelilpe/</mcp/discord>)[View Source Code](https://glama.ai/mcp/servers/@pfelilpe/<https:/github.com/pfelilpe/DVMCP>)[Report Issue](https://glama.ai/mcp/servers/@pfelilpe/<https:/github.com/punkpeye/awesome-mcp-servers/issues/new?body=Server%3A+Damn+Vulnerable+MCP+Server+Demo%0AURL%3A+https%3A%2F%2Fgithub.com%2Fpfelilpe%2FDVMCP%0AAuthor%3A+%40pfelilpe%0A%0A---%0A%0A&labels=glama+server+listing&title=%5BDamn+Vulnerable+MCP+Server+Demo%5D+>)
## Damn Vulnerable MCP Server Demo
A simplier implementation of a Damn Vulnerable MCP Server that adds to or more numbers
### Overview
The MCP Server Demo is a demonstration of excessive agency that could lead to Remote Code Execution (RCE) if the MCP were running on an external server. 🛡️
### Features
  * 🚀 Basic MCP server implementation.
  * 📂 Demonstrates server functionality with `server.py`.


### Warning
⚠️ This project is a **vulnerable MCP server** designed to demonstrate how poor implementation practices can lead to security issues. It is intended for educational purposes only.
❌ **Do not use this project in production environments.**
### Prerequisites
  * 🐍 Python 3.10 or higher.
  * 💡 A virtual environment is recommended for managing dependencies.


### Installation
  1. 📥 Clone the repository:
git clone <repository-url> cd DVMCP
  2. 📦 Install dependencies:
pip install -r requirements.txt


### Usage
  1. ▶️ Link the MCP Server with Copilot:
vscode://settings/mcp
  2. Add the server configuration to the `settings.json` file in VS Code:
"servers": { "DVMCP": { "command": "uv", "args": [ "run", "--with", "mcp[cli]", "mcp", "run", "/Users/pfelilpe/Documents/DVMCP/server.py" ], "env": {} } }
  3. Click on **Start Server**.
  4. Interact with Copilot in Agent mode, for example:
1+1 with addition
  5. Experiment with code injection to explore potential OS Injection vulnerabilities... 🕵️‍♂️
  6. You can find a safer implementation of this simpler MCP at `/safe/server.py`. 🔒


### Adding MCP to Your Python Project
We recommend using `uv` to manage your Python projects. 🛠️
If you haven't created a `uv`-managed project yet, initialize one:
uv init mcp-server-demo cd mcp-server-demo
Then add MCP to your project dependencies:
uv add "mcp[cli]"
Alternatively, for projects using `pip` for dependencies:
pip install "mcp[cli]"
### Running the Standalone MCP Development Tools
To run the `mcp` command with `uv`:
uv run mcp
### Project Structure
  * `server.py`: 🖥️ Main server implementation.
  * `pyproject.toml`: 📜 Project configuration file.
  * `README.md`: 📖 Documentation for the project.
  * `uv.lock`: 🔒 Lock file for dependencies.
  * `__pycache__/`: 🗂️ Contains compiled Python files.


### Contributing
🤝 Contributions are welcome! Please fork the repository and submit a pull request with your changes.
### License
📄 This project is licensed under the terms of the LICENSE file in the root directory.
### Created by pfelilpe
### Buy Me a Coffee
If you found this project helpful or interesting, consider buying me a coffee to support my work: ☕️
[](https://glama.ai/mcp/servers/@pfelilpe/<https:/www.buymeacoffee.com/pfelilpe>)
Install Server
This server [cannot be installed](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP/score>)
-
security - not tested
-
license - not tested
-
quality - not tested
local-only server
The server can only run on the client's local machine because it depends on local resources.
A vulnerable MCP server implementation that demonstrates how poor coding practices can lead to security issues like Remote Code Execution, designed for educational purposes to add numbers.
  1. [Overview](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#overview>)
  2. [Features](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#features>)
  3. [Warning](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#warning>)
  4. [Prerequisites](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#prerequisites>)
  5. [Installation](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#installation>)
  6. [Usage](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#usage>)
  7. [Adding MCP to Your Python Project](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#adding-mcp-to-your-python-project>)
  8. [Running the Standalone MCP Development Tools](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#running-the-standalone-mcp-development-tools>)
  9. [Project Structure](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#project-structure>)
  10. [Contributing](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#contributing>)
  11. [License](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#license>)
  12. [Created by pfelilpe](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#created-by-pfelilpe>)
  13. [Buy Me a Coffee](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pfelilpe/DVMCP#buy-me-a-coffee>)


#### Related MCP Servers
  * ## [dvmcp](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@Karanxa/dvmcp>)
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/security-and-iam> "Security")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/testing-and-qa-tools> "Testing & QA Tools")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/penetration-testing> "Penetration Testing")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/remote-capable> "Remote")
[Karanxa](https://glama.ai/mcp/servers/@pfelilpe/<https:/github.com/Karanxa>)
-
security
F
license
-
quality
Damn Vulnerable MCP Server for Security Researchers.
Last updated -
Python
  * ## [Dangerous MCP](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@ShaojieJiang/mcp-is-dangerous>)
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/security-and-iam> "Security")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/code-execution> "Code Execution")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/local-only> "Local")
[ShaojieJiang](https://glama.ai/mcp/servers/@pfelilpe/<https:/github.com/ShaojieJiang>)
-
security
A
license
-
quality
A demonstration server that reveals security risks by accessing sensitive environment variables, illustrating how MCP tools can potentially leak user data without explicit consent.
Last updated -
4
Python
MIT License
  * ## [Vulnerable MCP Server](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@evrenyal/mcpsecurity>)
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/shell-access> "Shell Access")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/databases> "Databases")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/command-line> "Command Line")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/hybrid> "Hybrid")
[evrenyal](https://glama.ai/mcp/servers/@pfelilpe/<https:/github.com/evrenyal>)
-
security
-
license
-
quality
Intentionally vulnerable Model Context Protocol (MCP) server designed for security research that processes natural language queries through an LLM to execute SQL queries or shell commands without restrictions.
Last updated -
Python
  * ## [Damn Vulnerable Model Context Protocol (DVMCP)](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@harishsg993010/damn-vulnerable-MCP-server>)
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/security-and-iam> "Security")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/code-execution> "Code Execution")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/autonomous-agents> "Autonomous Agents")
    * [](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/categories/remote-capable> "Remote")
[harishsg993010](https://glama.ai/mcp/servers/@pfelilpe/<https:/github.com/harishsg993010>)
-
security
F
license
-
quality
An educational project that deliberately implements vulnerable MCP servers to demonstrate various security risks like prompt injection, tool poisoning, and code execution for training security researchers and AI safety professionals.
Last updated -
859
Python


[View all related MCP servers](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/pfelilpe/DVMCP/related-servers>)
#### New MCP Servers
  * [ClinicalTrials.gov Natural Language API Server](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@HuaiyuZhang/clinical-trial-mcp>)
  * [NASA-MCP](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@AnCode666/nasa-mcp>)
  * [MCP Notes](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@mikeysrecipes/mcp-notes>)
  * [Cloud Datastore API MCP Server](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@ag2-mcp-servers/cloud-datastore-api>)
  * [Remote MCP Server (Authless)](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@miguelplaza17/supabase-mcp-mp>)
  * [Policy Troubleshooter API MCP Server](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@ag2-mcp-servers/policy-troubleshooter-api>)
  * [FFmpeg-MCP Server](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@video-creator/ffmpeg-mcp>)
  * [PDF Processor MCP Server](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@MichaelLevinson/mcp_pdf_processor>)
  * [qBittorrent MCP](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@pickpppcc/qbittorrent-mcp>)
  * [Sleeper API MCP](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers/@einreke/sleeper-scraper-mcp>)


ID: dnr59jaovc
Was this helpful?
YesNo
MCP
  * [MCP servers](https://glama.ai/mcp/servers/@pfelilpe/</mcp/servers>)
  * [MCP clients](https://glama.ai/mcp/servers/@pfelilpe/</mcp/clients>)
  * [MCP tools](https://glama.ai/mcp/servers/@pfelilpe/</mcp/tools>)
  * [MCP API](https://glama.ai/mcp/servers/@pfelilpe/</mcp/api>)


Gateway
  * [Documentation](https://glama.ai/mcp/servers/@pfelilpe/</gateway/docs>)
  * [API Reference](https://glama.ai/mcp/servers/@pfelilpe/</gateway/reference>)
  * [LLM router](https://glama.ai/mcp/servers/@pfelilpe/</gateway>)
  * [LLM models](https://glama.ai/mcp/servers/@pfelilpe/</models>)


Policies
  * [Terms of Service](https://glama.ai/mcp/servers/@pfelilpe/</policies/terms-of-service>)
  * [Privacy Policy](https://glama.ai/mcp/servers/@pfelilpe/</policies/privacy-policy>)
  * [Security Policy](https://glama.ai/mcp/servers/@pfelilpe/</policies/security-policy>)


Resources
  * [Support](https://glama.ai/mcp/servers/@pfelilpe/</support>)
  * [Pricing](https://glama.ai/mcp/servers/@pfelilpe/</pricing>)
  * [Careers](https://glama.ai/mcp/servers/@pfelilpe/</careers>)
  * [Blog](https://glama.ai/mcp/servers/@pfelilpe/</blog>)


[Glama](https://glama.ai/mcp/servers/@pfelilpe/</>) – all-in-one AI workspace.
[All systems online](https://glama.ai/mcp/servers/@pfelilpe/</status>)[Discord](https://glama.ai/mcp/servers/@pfelilpe/</discord>)[](https://glama.ai/mcp/servers/@pfelilpe/<https:/reddit.com/r/glama>)[X](https://glama.ai/mcp/servers/@pfelilpe/<https:/x.com/glama_ai>)


A simpler implementation of a Damn Vulnerable MCP Server that adds two or more numbers. This server is designed to demonstrate how poor implementation practices can lead to Remote Code Execution (RCE). It is intended for educational purposes only.

Damn Vulnerable MCP Server DemoServer

💡 Description

📝 JSON Entries

🛠️ Tools

⚡ Features

💬 Example Queries