Name of the Vulnerable Software and Affected Versions:

Cursor versions prior to 1.3

Description:

Cursor is a code editor built for programming with AI. Versions prior to 1.3 allow embedding images through Mermaid, a diagram rendering tool. This can be exploited to exfiltrate sensitive information to a third-party attacker-controlled server via an image fetch following a successful prompt injection. A malicious model or backdoor could also trigger this exploit. The issue requires prompt injection from malicious data (web, image upload, source code) to function.

Recommendations:

Update to version 1.3 or later.