Cursor Development Tool Faces Critical Vulnerability via Compromised MCP Servers

Cursor, a development tool similar to VS Code, is facing a critical vulnerability that allows attackers to inject malicious code into its internal browser via compromised MCP (Model Context Protocol) servers. Unlike VS Code, Cursor does not implement integrity checks in its proprietary functions, making it susceptible to phishing attacks through fake login pages. This vulnerability was reported in November 2025. The vulnerability stems from the lack of integrity verification in Cursor's handling of content served by MCP servers. Attackers can compromise these servers and inject malicious code, leading to phishing attacks that can trick users into divulging their credentials. The impact of this vulnerability is significant, as it can lead to unauthorized access to sensitive information and potential supply chain attacks. From a cybersecurity perspective, this vulnerability highlights the importance of implementing robust security measures in development tools. Vendors should ensure that their tools verify the integrity of all served content to prevent such exploits. Developers should also remain vigilant and adopt best practices, such as verifying the authenticity of login pages and keeping their tools updated. The broader implication for the cybersecurity landscape is the potential for supply chain attacks. Compromised development tools can lead to the injection of malicious code into software projects, affecting not just individual developers but entire organizations and their customers. In conclusion, the critical vulnerability in Cursor underscores the need for stringent security practices in the development and use of software tools. It serves as a reminder that even popular and widely-used tools can have significant security flaws that need to be addressed promptly.