Expense-tracker-mcp-server
Verified Safeby bisVo159
Overview
A server for tracking and managing personal expenses via a FastMCP API.
Installation
uv run fastmcp dev main.pySecurity Notes
The application critically lacks any authentication or authorization mechanisms. Any client capable of connecting to the server (which defaults to '0.0.0.0:8000') can perform all CRUD operations on expense data. This poses a severe privacy and security risk if the server is exposed to an untrusted network. Data is stored in the system's temporary directory, which can lead to data loss due to system cleanup processes. While SQL injection is mitigated by using parameterized queries, the complete absence of access control for sensitive financial data is a major vulnerability.
Similar Servers
Trackor
Provides an MCP server for tracking personal expenses, including adding, listing, summarizing, updating, and exporting data.
practice-mcp-server
A personal AI assistant backend server for managing notes, tasks, and calendar events, with web scraping and semantic search capabilities.
remote-mcp-server
A server for tracking and managing personal or business expenses, allowing users to add, list, and summarize financial transactions.
Expense-Tracker-MCP-Remote
Manages personal expenses by allowing users to add, list, summarize, edit, delete, and search expense entries.