A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser — and potentially leverage the IDE’s privileges to perform system tasks.
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback