radar.cysentrix
2 reports · 2 sources · tracked since 1d ago

Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands

AI synthesis Critical DuneSlide flaws in Cursor AI editor enable zero-click prompt injection to escape its sandbox and execute arbitrary commands on the OS.

vulnerability
Why this ranks Transparent score: 14
coverage +6 source breadth +4 urgency +0 freshness +4

What changed

Coverage timeline

Every report remains linked to its original publisher.

  1. The Hacker News First observed

    Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands ↗

    Two flaws in Cursor, an AI code editor, could let a single, ordinary-looking prompt break out of the editor's safety sandbox and run any command on a developer's computer. There is no click to fall for and no approval box to ignore. Cato AI Labs found the pair and named them D...