Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Packet Storm
Packet Stormadded 2026/03/23 12:0 a.m.117 views

📄 Cursor IDE MCP Deeplink Remote Code Execution

This Metasploit module exploits the MCP deeplink functionality in Cursor IDE through social engineering. The cursor:// protocol handler can be abused when a user accepts an installation prompt, leading to arbitrary command execution...

8.8CVSS6.2AI score0.00774EPSS
Exploits2
The Hacker News
The Hacker Newsadded 2025/12/06 3:24 p.m.10 views

Researcher Uncovers 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

Over 30 security vulnerabilities have been disclosed in various artificial intelligence AI-powered Integrated Development Environments IDEs that combine prompt injection primitives with legitimate features to achieve data exfiltration and remote code execution. The security shortcomings have been...

9.8CVSS8.7AI score0.06597EPSS
Exploits3
OSV
OSVadded 2025/10/03 8:15 p.m.1 views

CVE-2025-59944 Cursor IDE: Sensitive File Overwrite Bypass is Possible

Cursor is a code editor built for programming with AI. Versions 1.6.23 and below contain case-sensitive checks in the way Cursor IDE protects its sensitive files e.g., /.cursor/mcp.json, which allows attackers to modify the content of these files through prompt injection and achieve remote code...

8CVSS8.3AI score0.00251EPSS
Exploits0References3
CVE
CVEadded 2025/10/03 8:15 p.m.13 views

CVE-2025-59944

Cursor IDE versions 1.6.23 and earlier are affected by a vulnerability in how sensitive files are protected (notably /.cursor/mcp.json). The issue arises from case-sensitive checks that can be bypassed, allowing an attacker to modify sensitive files via prompt injection and achieve remote code ex...

9.8CVSS7.8AI score0.00251EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/10/03 8:15 p.m.1 views

CVE-2025-59944 Cursor IDE: Sensitive File Overwrite Bypass is Possible

Cursor is a code editor built for programming with AI. Versions 1.6.23 and below contain case-sensitive checks in the way Cursor IDE protects its sensitive files e.g., /.cursor/mcp.json, which allows attackers to modify the content of these files through prompt injection and achieve remote code...

8CVSS7.8AI score0.00251EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/10/03 8:15 p.m.3 views

CVE-2025-59944 Cursor IDE: Sensitive File Overwrite Bypass is Possible

Cursor is a code editor built for programming with AI. Versions 1.6.23 and below contain case-sensitive checks in the way Cursor IDE protects its sensitive files e.g., /.cursor/mcp.json, which allows attackers to modify the content of these files through prompt injection and achieve remote code...

8CVSS0.00251EPSS
Exploits0References1
Rows per page
Query Builder