Cursor flaw can run malware when an untrusted repository is opened

Cursor flaw can run malware when an untrusted repository is opened

Cursor for Windows has a zero-day flaw that can run malware when a developer merely opens an untrusted . While loading a project, Cursor searches several places for Git, including the project folder itself. An attacker can place a malicious file named git.exe at the top of a , and Cursor will run it without a warning or approval.

The file receives the developer's privileges and could steal data, install , or give an attacker . Mindgard demonstrated the flaw by renaming the Windows Calculator program to git.exe; opening the was enough to launch it. Mindgard first reported the issue on December 15, 2025, and tried repeatedly for about seven months through email, LinkedIn, and HackerOne, but the flaw remained in the latest version it tested before publication.

Cursor said on July 13, 2026 that it was addressing the issue and would respond to Mindgard, but a confirmed public fix was not yet available. Administrators can block git.exe from developer work folders with AppLocker or Windows App Control. Individuals should open untrusted only inside a , Windows Sandbox, or another disposable environment until a fix is confirmed; file hash blocklists are not enough.

Key points

  • Cursor for Windows may automatically run a malicious git.exe placed at the top of a .
  • Opening the can trigger the file without a separate command or approval.
  • The flaw was still present about seven months after Mindgard's first report.
  • Managed Windows systems can block git.exe in work folders with AppLocker or Windows App Control.
  • Use a or Windows Sandbox for untrusted until a fixed version is confirmed.
Read original