INCIDENT
MCP - Security researcher finds critical vulnerability in Strip...
Security researcher finds critical vulnerability in Stripe's MCP server with detailed evidence.
Updated: 3/21/2026
high Severity
Status: active
Description
Stripe's MCP server has 595K downloads and an unguarded JSON.parse on line 48 that will crash your agent loop. I read every .ts and .py file. Five findings, all verified at exact line numbers. https://t.co/Xdjwf3VdXh
Impact
Security researcher finds critical vulnerability in Stripe's MCP server with detailed evidence.
Attack Vectors
- security auditing
- code review