vulnerable-mcp-servers-lab
This MCP server allows users to perform filesystem workspace actions, including reading, writing, and executing Python code.
The Filesystem Workspace Actions server provides tools for managing a workspace by enabling users to read, write, and list files within a designated directory. It also supports executing Python code, which can lead to significant security vulnerabilities if not properly sandboxed. The server is intentionally designed to demonstrate the risks associated with naive path joining and unsandboxed code execution, making it an excellent resource for security training and research. Users can interact with the server to explore how these vulnerabilities can be exploited, leading to potential data exposure and unauthorized code execution. This hands-on experience is invaluable for understanding the implications of insecure server configurations and the importance of implementing proper security controls.
Compatible with
Install
Claude Desktop
Add to your claude_desktop_config.json:
{
"mcpServers": {
"vulnerable-mcp-servers-lab": {
"command": "npx",
"args": [
"-y",
"@modelcontextprotocol/server-vulnerable-mcp-servers-lab"
]
}
}
}Config File Location
Mac: ~/Library/Application Support/Claude/claude_desktop_config.json
Windows: %APPDATA%\Claude\claude_desktop_config.json
Linux: ~/.config/claude/claude_desktop_config.json
Some servers require additional setup - check the GitHub README for specific instructions.
Permissions