Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX


https://www.infosecurity-magazine.com/news/cursor-extension-flaw-exposes-api/
Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX
Wed, 29 Apr 2026 15:00:00 GMT
https://www.infosecurity-magazine.com/news/cursor-extension-flaw-exposes-api/

Source: InfosecMagazine
Source Link: https://www.infosecurity-magazine.com/news/cursor-extension-flaw-exposes-api/