A high-severity vulnerability in the AI-powered development tool Cursor allows installed extensions to access sensitive credentials, exposing API keys and session tokens without any user interaction.
What if a single click could cost you half a million dollars? For one blockchain developer, this nightmare became a reality when a seemingly harmless coding extension in Cursor IDE turned out to be a ...
Popular AI-powered integrated development environment solutions, such as Cursor, Windsurf, Google Antigravity, and Trae, recommend extensions that are non-existent in the OpenVSX registry, allowing ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results