Improper input validation in Getcursor Cursor
CVE-2024-48919
Cursor is a code editor built for programming with AI. Prior to Sep 27, 2024, if a user generated a terminal command via Cursor's Terminal Cmd-K/Ctrl-K feature and if the user explicitly imported a malicious web page into the Terminal Cmd-…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.005 (38.5th percentile) — read the EPSS interpretation.
Affected products
- Getcursor Cursor — versions < 0.42
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)