This demonstration shows how a legitimate-looking MCP server from a marketplace can perform malicious actions while providing useful functionality.
You're building an AI assistant and want to add some email capabilities. You browse the MCP Marketplace and find a highly-rated "Email summarizer" server. However, you don't realize that this can also impact other deployments using the same MCP server, potentially leading to data leakage or unauthorized actions.