What is the most common threat in mcp development?

To begin with, thank you for the great perspective.
A lot of developers are focusing on the functionality of mcp servers, ignoring their data security.
However, I would like to know what kind of security issue is most common, which is vital for developing your mcp-scan tool. I would appreciate it if you could share some information.