2 matches found
📄 Cursor IDE MCP Deeplink Remote Code Execution
This Metasploit module exploits the MCP deeplink functionality in Cursor IDE through social engineering. The cursor:// protocol handler can be abused when a user accepts an installation prompt, leading to arbitrary command execution...
PT-2023-3208
Name of the Vulnerable Software and Affected Versions gosnowflake versions prior to 1.6.19 Description A command injection vulnerability exists in the Snowflake Golang driver via single sign-on SSO browser URL authentication. To exploit this issue, an attacker would need to establish a malicious...