Bleeping Computer

AI-powered Cursor IDE vulnerable to prompt-injection attacks

A vulnerability that researchers call CurXecute is present in almost all versions of the AI-powered code editor Cursor, and can be exploited to execute remote code with developer privileges. The ...
Geeky Gadgets

Cursor AI Setup for Cloning Any Website Fast : From Screenshot to Functional Code

What if you could replicate the design of any website or transform intricate Figma files into functional code with just a few clicks? It might sound like a developer’s pipe dream, but thanks to ...
CSOonline

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser — and potentially leverage the IDE’s privileges to perform system tasks.