Is Vulnerablemcp safe to use?

Vulnerablemcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install Vulnerablemcp?

Vulnerablemcp can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with Vulnerablemcp?

Vulnerablemcp is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio and sse transport.

Is Vulnerablemcp actively maintained?

Vulnerablemcp is recently maintained — last commit was 51 days ago. It has 36 GitHub stars.

Vulnerablemcp

A comprehensive database of Model Context Protocol vulnerabilities, security research, and exploits

MaintainedNot tested

Data

★ 36GitHub

24DNo CVEsmaintained

Quick Install

{
  "mcpServers": {
    "vulnerablemcp": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Setup guide

No install config available. Check the server's README for setup instructions.

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/vulnerablemcp)](https://mcppedia.org/s/vulnerablemcp)

Should you use this server?

A comprehensive database of Model Context Protocol vulnerabilities, security research, and exploits

✓

Is it safe?

No package registry to scan.

No authentication — any process on your machine can connect.

License not specified.

✓

Is it maintained?

Last commit 51 days ago. 36 stars.

Will it work with my client?

Transport: stdio, sse. Works with Claude Desktop, Cursor, Claude Code, and most MCP clients.

Test This Server

This server supports HTTP transport. Be the first to test it — help the community know if it works.

Score Breakdown

MCPpedia Score

Click each category to see evidence

24D

Last scored 21h ago

How we score →

Security

3/30

No known vulnerabilities.

○

Known CVEs — No package registry to scan

○

Tool safety — No tools to analyze

○

Tool poisoning — No tools to analyze

○

Injection vectors — No tools to analyze

✓

Tool stability — Tool definitions stable

○

Dependency health — No package to analyze

✗

License — No license specified

○

Authentication — No authentication required

○

Frequently Asked Questions

Is Vulnerablemcp safe to use?: Vulnerablemcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install Vulnerablemcp?: Vulnerablemcp can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with Vulnerablemcp?: Vulnerablemcp is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio and sse transport.
Is Vulnerablemcp actively maintained?: Vulnerablemcp is recently maintained — last commit was 51 days ago. It has 36 GitHub stars.

Vulnerablemcp

Quick Install

Should you use this server?

Test This Server

Score Breakdown

MCPpedia Score

Security

Help improve this page

Reviews

Frequently Asked Questions

Similar servers

Supabase MCP Server

PostgreSQL MCP Server

Mcp Server Qdrant

Context7

Discussion