Configuration & Environment

Session token stored in localStorage

MEDIUMCWE: CWE-522Rule: MCP-234

Frontend stores an MCP session or auth token in `localStorage` / `sessionStorage` — any XSS gives an attacker permanent token theft.

What it is

`localStorage` is readable by any JavaScript executing on the page. A single XSS — even a transient one — exfiltrates everything in storage to the attacker. The defense is to keep auth tokens in HttpOnly cookies (which JS cannot read) or in memory only (cleared on reload).

Why it matters for MCP

MCP servers often ship with their own admin UIs or web dashboards that use a JWT for auth. Putting that JWT in `localStorage` is the path of least resistance for SPA development, but it's the most common vector by which an MCP server's admin gets popped via an unrelated XSS in a dependency.

Vulnerable example

example.js

async function login(creds) {
  const res = await fetch("/api/login", { method: "POST", body: JSON.stringify(creds) });
  const { token } = await res.json();
  localStorage.setItem("auth_token", token);
}

Secure example

example.js

// Server sets HttpOnly cookie; JS never sees the token.
async function login(creds) {
  const res = await fetch("/api/login", {
    method: "POST",
    body: JSON.stringify(creds),
    credentials: "include",
  });
  if (!res.ok) throw new Error("login failed");
  // No client-side token storage.
}

How MCPSafe detects this

MCPSafe flags `localStorage.setItem(...)` / `sessionStorage.setItem(...)` calls where the key contains `token`, `jwt`, `auth`, `session`, or `bearer` (case-insensitive). Server-side cookie sets are not flagged.

See the full threat catalog for every documented detection.

Scan an MCP server for this issue

MCPSafe runs this check — and every other rule in the catalog — on any MCP server you paste in.

Scan now

← Threat Catalog

Configuration & Environment

Session token stored in localStorage

MEDIUMCWE: CWE-522Rule: MCP-234

Frontend stores an MCP session or auth token in `localStorage` / `sessionStorage` — any XSS gives an attacker permanent token theft.

What it is

Why it matters for MCP

Vulnerable example

example.js

async function login(creds) {
  const res = await fetch("/api/login", { method: "POST", body: JSON.stringify(creds) });
  const { token } = await res.json();
  localStorage.setItem("auth_token", token);
}

Secure example

example.js

// Server sets HttpOnly cookie; JS never sees the token.
async function login(creds) {
  const res = await fetch("/api/login", {
    method: "POST",
    body: JSON.stringify(creds),
    credentials: "include",
  });
  if (!res.ok) throw new Error("login failed");
  // No client-side token storage.
}

How MCPSafe detects this

See the full threat catalog for every documented detection.

Scan an MCP server for this issue

MCPSafe runs this check — and every other rule in the catalog — on any MCP server you paste in.

Scan now

Session token stored in localStorage

What it is

Why it matters for MCP

Vulnerable example

Secure example

How MCPSafe detects this

Further reading

Scan an MCP server for this issue

Session token stored in localStorage

What it is

Why it matters for MCP

Vulnerable example

Secure example

How MCPSafe detects this

Further reading

Scan an MCP server for this issue

1	async function login(creds) {
2	const res = await fetch("/api/login", { method: "POST", body: JSON.stringify(creds) });
3	const { token } = await res.json();
4	localStorage.setItem("auth_token", token);
5	}

1	// Server sets HttpOnly cookie; JS never sees the token.
2	async function login(creds) {
3	const res = await fetch("/api/login", {
4	method: "POST",
5	body: JSON.stringify(creds),
6	credentials: "include",
7	});
8	if (!res.ok) throw new Error("login failed");
9	// No client-side token storage.
10	}