安全研究团队 General Analysis 日前警告称，如果你使用了 Cursor 搭配 MCP，有可能在毫不知情的情况下，把你的整个 SQL 数据库泄露出去——而攻击者仅靠一条“看起来没什么问题”的用户信息就能做到这一点。 这是“致命三连”攻击模式的典型体现：提示注入 ...

这是苍何的第 384 篇原创！ 大家好，我是苍何。 好几天没写代码了，心里好痒。 呸、好几天没指挥 AI 写代码了，心里好痒😂。 打开 Cursor，更新更新我的开源项目吧。 发现 Cursor 直接更新到 1.0 了。 这可是首个整数版本号，按理说会带来些有用的功能，看了 ...

IT之家 6 月 5 日消息，Cursor 1.0 版本正式发布，带来一系列实用工具，显著提升开发体验。新版主要新增 BugBot 自动代码审查工具，并创新引入 Memories 和一键式安装 MCP 服务器体验。 IT之家援引更新日志，本次更新最大的亮点在于 BugBot，将成为开发者审查代码的 ...

Enhancing the coding capabilities of Cursor AI can significantly improve your software development process. By integrating Zapier MCP servers, you gain the ability to automate tasks, connect APIs, and ...

Check Point researchers uncovered a remote code execution bug in popular vibe-coding AI tool Cursor that could allow an attacker to poison developer environments by secretly modifying a previously ...

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser — and potentially leverage the IDE’s privileges to perform system tasks.

The Browser MCP (Model Context Protocol) server, when paired with Cursor, provides a comprehensive platform for automating browser tasks and testing web applications. By combining browser navigation, ...

你是否还在手动将设计稿转化为一行行代码？有没有想过，如何能让AI领会你的设计意图，自动完成那些重复枯燥的编码工作？设计师与开发者之间的协作壁垒，真的无法被打破吗？或许你听过MCP，却对它能做什么、如何改变我们的工作流一知半解。 今天这篇 ...

An inherent insecurity in the increasingly popular artificial intelligence (AI)-powered developer environment Cursor allows attackers to take over its browser to deliver credential-stealing attacks.

SAN FRANCISCO, March 20, 2026 /PRNewswire/ -- WordPress.com, Automattic's hosted website platform built on the open source WordPress software, today announced the launch of new write capabilities for ...