AdAdvisor MCP Server
Query Meta Ads performance data — accounts, campaigns, ad sets, ads, metrics & settings.
Installation
Claude Desktop config (remote)
{
"mcpServers": {
"ai-adadvisor-mcp-server": {
"type": "streamable-http",
"url": "https://api.adadvisor.ai/mcp"
}
}
}Cursor config
{
"mcpServers": {
"ai-adadvisor-mcp-server": {
"url": "https://api.adadvisor.ai/mcp"
}
}
}Security Report
Score Breakdown
Findings (6)
Remote HTTP Endpoint Without Visible Authentication
Server operates as a remote HTTP endpoint (streamable-http) at https://api.adadvisor.ai/mcp. No authentication mechanism is documented in the provided metadata. Remote servers accepting connections from the internet pose elevated risk, especially without clear credential handling.
Broad Access to Sensitive Advertising Data
Server claims access to Meta Ads accounts, campaigns, ad sets, ads, metrics, and settings. This represents broad access to sensitive business data (ad spend, targeting, performance metrics, account configurations). The scope is proportional to stated purpose but the sensitivity of advertising account data warrants caution.
No Tool Definitions Available for Review
Tool definitions were not fetched or are unavailable. Cannot assess input validation, prompt injection risks, or actual capability implementation. This prevents thorough security analysis of what the server actually does.
No Public Source Code Repository
Server has no linked GitHub repository or public source code. Cannot verify implementation details, audit code for vulnerabilities, or confirm the server's actual behavior matches its description.
Likely Requires Meta API Credentials
A server querying Meta Ads data almost certainly requires API credentials (access tokens, app IDs, etc.). How these credentials are passed, stored, and validated is unclear from metadata alone.
Semantic Analysis Summary
AdAdvisor is a remote HTTP server claiming access to sensitive Meta Ads account data without documented authentication or available tool definitions for security review. The lack of source code, missing tool visibility, and remote endpoint architecture create moderate-to-high risk. The broad scope of advertising data access (accounts, campaigns, metrics, settings) is appropriate for its stated purpose but requires careful credential management and access controls.
Last scanned 1mo ago
Details
- Version
- 1.0.1
- Transport
- streamable-http
- Capabilities
- Website
- www.adadvisor.ai