Cursor Flaw Lets Malicious Cloned Repositories Trigger Windows Code Execution

Article summary
Quick briefing — cleaned from the original RSS feed
Open a repository in Cursor on Windows and, if a file named git.exe is sitting in the project root, Cursor runs it. No click, no approval dialog, no warning that anything in the folder is about to execute. Whatever that binary does, it does as you, with your source, your SSH keys and your cloud tokens. Cursor keeps re-running it for as long as the project stays open. No prompt
1Key Takeaways
- Open a repository in Cursor on Windows and, if a file named git.exe is sitting in the project root, Cursor runs it.
- No click, no approval dialog, no warning that anything in the folder is about to execute.
- Whatever that binary does, it does as you, with your source, your SSH keys and your cloud tokens.
- Cursor keeps re-running it for as long as the project stays open.
2AIWedia Score
8.6/10
High relevance — worth your attention today
Based on source trust, recency, category impact, and story depth.
3Why it matters
Tool launches and updates shape which workflows teams adopt and which vendors gain traction. The Hacker News reports that open a repository in Cursor on Windows and, if a file named git.exe is sitting in the project root, Cursor runs it.
Explore related
Browse toolsRelated tools
AI Tools news
Explore curated ai tools tools on AIWedia — compare, rank, and launch from our directory.
Full story on The Hacker News
Read full articleHeadlines aggregated via RSS for discovery on AIWedia. Original content © The Hacker News. We link to the source and do not republish full articles.
