Step 1
Install in your client
Config is the same across clients — only the file and path differ.
CD
Supported in Claude Desktophttp · Node 18+
Paste into ~/Library/Application Support/Claude/claude_desktop_config.json
{
"mcpServers": {
"mcpin10": {
"args": [
"langflow"
],
"command": "uvx"
}
}
}Are you the author?
Add this badge to your README to show your security score and help users find safe servers.
Embed in your READMEAbout badges →
[](https://mcppedia.org/s/mcpin10)
Read me
What MCPin10 does
Learn how to build a MCP Server for Yahoo Finance (and just about anything else) in 10 minutes.
Test This Server
Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.
uvx 'langflow' 2>&1 | head -1 && echo "✓ Server started successfully"
After testing, let us know if it worked:
Loading README…
Scored, not listed
Why this score
Five weighted categories — click any category to see the underlying evidence.
Score breakdown
26/100across 5 weighted dimensions
0255075100
10
10
−74
Security
Maintenance
Efficiency
Documentation
Compatibility
Categoriesclick a row to see evidence
Security
OSV.dev7 open25 fixed
CVE-2026-55447critical · fixedCVSS 9.6
Langflow: BaseFileComponent-based nodes arbitrary file read with RCE exploit
### Summary All components based on `BaseFileComponent` are vulnerable to the following vulnerability: 1. Docling (`DoclingInlineComponent`) 2. Docling Serve (`DoclingRemoteComponent`) 3. Read File (`FileComponent`) 4. NVIDIA Retriever Extraction (`NvidiaIngestComponent`) 5. Video File (`VideoFileComponent`) 6. Unstructured API (`UnstructuredComponent`) For clarity, from now on I'll only refer to Read File component. The Read File node processes user-controlled files. Example scenario is a RAG
CVE-2026-55446high · fixedCVSS 7.5
Langflow: Unauthenticated DoS through multipart form boundary file upload
### Summary An attacker can send a `/api/v1/files/upload/` request without any authentication token/cookies and abuse a very long multipart form boundary to make the langflow app unusable for all users for an indefinite amount of time. ### Details https://github.com/langflow-ai/langflow/blob/v1.0.18/src/backend/base/langflow/api/v1/files.py#L40 The file upload function will try to process the multipart form data even if it is malformed and contains a payload such as an extremely large amount
CVE-2026-55423medium · fixedCVSS 6.1
Langflow: Logout button does not clear session
### Summary The logout button does not clear the session. The previous user stays logged in unless another user explicitly logs in. ### Details Not in auto login mode. Hosted on localhost. `access_token_lf` remains present in both Local Storage and Cookies. `refresh_token_lf` remains present in Cookies. **Root cause:** the `/logout` endpoint deleted the authentication cookies without matching the original `httponly`/`samesite`/`secure`/`domain` parameters, so the browser kept them; additionall
CVE-2026-55255critical · fixedCVSS 9.9
Langflow: IDOR Vulnerability in `/api/v1/responses` Endpoint Allows Authenticated Attackers to Access Another User's Flow
## Summary Insecure Direct Object Reference (IDOR) vulnerability in `/api/v1/responses` endpoint allows an authenticated attacker to execute any flow belonging to another user by specifying the victim's flow ID in the request. ## Details The vulnerability exists in the `get_flow_by_id_or_endpoint_name` helper function in [`src/backend/base/langflow/helpers/flow.py` (lines 399-414)](https://github.com/langflow-ai/langflow/blob/v1.9.0/src/backend/base/langflow/helpers/flow.py#L399C1-L414C67).
CVE-2026-55450critical · fixedCVSS 9.3
Langflow: Unauthenticated file upload leads to DoS (space exhaustion) and information leak
### Summary Unauthenticated users can upload any amount of data to the server without any limitations. No need for any prior knowledge, only network access to Langflow. This can lead to space exhaustion on the server. In adition, in the response, the absolute path of the uploaded file is reported to the attacker, which is an information leak that can assist in chaining other primitives. Tested on commit 2d67402b1dbaefcbce85a244d4a6cd5e4bda1cfe ### Details Code is in `langflow/api/v1/[endpoin
Community
Reviews
Be the first to review
Have you used this server?
Share your experience — it helps other developers decide.
How easy was setup?Did it work reliably?How was the documentation?
Sign in to write a review.
Frequently Asked Questions
- Is MCPin10 safe to use?
- MCPin10 has 8 known CVEs tracked by MCPpedia. You can verify these on OSV.dev by searching for "langflow". Review the Security section above for details before installing.
- How do I install MCPin10?
- MCPin10 supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
- What AI clients work with MCPin10?
- MCPin10 is compatible with claude-desktop, cursor, claude-code. It uses http transport.
- Is MCPin10 actively maintained?
- MCPin10 is not actively maintained — last commit was 434 days ago. It has 52 GitHub stars.
Related
Similar servers
Others in finance
I
io.github.wyre-technology/qbo-mcp92MCP server for QuickBooks Online — accounts, customers, invoices, bills, and reports.
2 11
P
Printr MCP Server92Let AI agents create, discover, and track tokens across chains via Printr.
3 9
I
io.github.PromptPartner/bexio-mcp-server92Swiss accounting integration for Bexio. 310 tools for invoices, contacts, projects.
19 6
S
Spraay Solana Gateway MCP Server90Batch send SOL or any SPL token to 1000+ wallets via x402. AI agent payments on Solana.
4
MCP Security Weekly
Get CVE alerts and security updates for MCPin10 and similar servers.
Community
Discussion
Start a conversation
Ask a question, share a tip, or report an issue.
Has anyone used this with Cursor?How do you handle auth?Any alternatives?
Sign in to join the discussion.
