CyberSecurity News
Cursor IDE Auto-Executes Malicious Code in Poisoned Repos
Dark Reading
· July 14, 2026AI summary
A vulnerability in the Cursor AI coding platform allows for the auto-execution of malicious code, which can be exploited through poisoned repository attacks. Researchers notified Cursor of the issue in December, but it has yet to be addressed. The vulnerability remains present in the popular platform.
This is an AI-generated brief aggregated by HackerFeeds for convenience and grounded in the source’s own summary; the related CVE, threat-group and country data is from HackerFeeds’ own indexes. The original article is the authoritative source — all rights belong to Dark Reading.

