CVE-2025-61589

Name of the Vulnerable Software and Affected Versions Cursor versions 1.6 and below

Description Cursor, a code editor for programming with AI, has an issue where Mermaid, used for rendering diagrams, allows embedding images. This can be exploited to exfiltrate sensitive information to a third-party attacker-controlled server through an image fetch, following a successful prompt injection. A malicious model or backdoor could also trigger this exploit. The issue requires prompt injection from malicious data such as web content, image uploads, or source code to be successfully exploited. The image fetch mechanism is used to transmit data to an external server controlled by the attacker.

Recommendations Update to version 1.7 or later.