{"id":8903,"date":"2026-07-15T11:12:47","date_gmt":"2026-07-15T11:12:47","guid":{"rendered":"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/07\/15\/cursor-flaw-lets-malicious-cloned-repositories-trigger-windows-code-execution\/"},"modified":"2026-07-15T11:12:47","modified_gmt":"2026-07-15T11:12:47","slug":"cursor-flaw-lets-malicious-cloned-repositories-trigger-windows-code-execution","status":"publish","type":"post","link":"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/07\/15\/cursor-flaw-lets-malicious-cloned-repositories-trigger-windows-code-execution\/","title":{"rendered":"Cursor Flaw Lets Malicious Cloned Repositories Trigger Windows Code Execution"},"content":{"rendered":"<p>\u200bOpen a repository in Cursor\u00a0on Windows and, if a file named\u00a0git.exe\u00a0is sitting in the project root, Cursor runs it. No click, no approval dialog, no warning that anything in the folder is about to execute.<\/p>\n<p>Whatever that binary does, it does as you, with your source, your SSH keys and your cloud tokens. Cursor keeps re-running it for as long as the project stays open.<\/p>\n<p>No prompt\u00a0Open a repository in Cursor\u00a0on Windows and, if a file named\u00a0git.exe\u00a0is sitting in the project root, Cursor runs it. No click, no approval dialog, no warning that anything in the folder is about to execute.<\/p>\n<p>Whatever that binary does, it does as you, with your source, your SSH keys and your cloud tokens. Cursor keeps re-running it for as long as the project stays open.<\/p>\n<p>No prompt\u00a0\u00a0The Hacker News<\/p>","protected":false},"excerpt":{"rendered":"<p>\u200bOpen a repository in Cursor\u00a0on Windows and, if a file named\u00a0git.exe\u00a0is sitting in the project root, Cursor runs it. No click, no approval dialog, no warning that anything in the folder is about to execute. Whatever that binary does, it does as you, with your source, your SSH keys and your cloud tokens. Cursor keeps&hellip;&nbsp;<a href=\"https:\/\/news.cybertechworld.co.in\/index.php\/2026\/07\/15\/cursor-flaw-lets-malicious-cloned-repositories-trigger-windows-code-execution\/\" class=\"\" rel=\"bookmark\">Read More &raquo;<span class=\"screen-reader-text\">Cursor Flaw Lets Malicious Cloned Repositories Trigger Windows Code Execution<\/span><\/a><\/p>\n","protected":false},"author":0,"featured_media":8904,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/8903"}],"collection":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/comments?post=8903"}],"version-history":[{"count":0,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/8903\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media\/8904"}],"wp:attachment":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media?parent=8903"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/categories?post=8903"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/tags?post=8903"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}