| Cursor 0day: When Full Disclosure Becomes the Only Protection Left(mindgard.ai) | |
| 389 points by Synthetic7346 18 hours ago | 181 comments | |
tl;dr: Cursor on Windows executes any `git.exe` found in a repository's root automatically when the project is opened, resulting in arbitrary code execution with no user interaction. Mindgard reported the flaw in December 2025, but after seven months, 197+ releases, and repeated attempts to engage Cursor and HackerOne, the vulnerability remains unpatched with no vendor communication, prompting full public disclosure. Users are advised to open untrusted repos only in sandboxes/VMs or use AppLocker rules as mitigation. | |
HN Discussion:
| |