Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories
What’s new: A security vulnerability has been identified in the Cursor AI code editor that allows for silent code execution when a malicious repository is opened. The flaw arises from the default disabling of the Workspace Trust feature, enabling attackers to execute arbitrary code upon opening a project folder. This could lead to sensitive data leakage and broader system compromises.
Who’s affected
Users of the Cursor AI code editor are at risk, particularly those who open untrusted repositories without enabling the Workspace Trust feature.
What to do
- Enable Workspace Trust in Cursor to prevent unauthorized code execution.
- Open untrusted repositories in a different code editor and audit them before using them in Cursor.
