Critical Cursor Sandbox Flaws Could Allow Prompt Injection To Escape Restrictions And Execute Commands
Two critical vulnerabilities in Cursor AI code editor could allow prompt injection attacks to escape the built in sandbox and execute commands on developers’ systems. The flaws have been patched in Cursor 3.0.