CVE-2025-49150

Name of the Vulnerable Software and Affected Versions Cursor versions prior to 0.51.0

Description The issue allows an attacker to trigger an arbitrary HTTP GET request without user confirmation by writing a JSON file. This could potentially be used to exfiltrate data if a malicious agent gains access, for example, after a successful prompt injection attack. The json.schemaDownload.enable setting being set to True by default prior to version 0.51.0 is the root cause.

Recommendations For versions prior to 0.51.0, update to version 0.51.0 to resolve the issue. As a temporary workaround, consider setting the json.schemaDownload.enable setting to False to prevent arbitrary HTTP GET requests.