National Cyber Warfare Foundation (NCWF)

Cursor AI Code Editor Fixed Flaw Allowing Attackers to Run Commands via Prompt Injection
0 user ratings		2025-08-01 17:32:59
milo
Developers
Cybersecurity researchers have disclosed a now-patched, high-severity security flaw in Cursor, a popular artificial intelligence (AI) code editor, that could result in remote code execution.
The vulnerability, tracked as CVE-2025-54135 (CVSS score: 8.6), has been addressed in version 1.3 released on July 29, 2025. It has been codenamed CurXecute by Aim Labs, which previously disclosed EchoLeak.



Source: TheHackerNews
Source Link: https://thehackernews.com/2025/08/cursor-ai-code-editor-fixed-flaw.html

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Developers


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.