{"vulnerability": "cve-2025-54135", "sightings": [{"uuid": "44128a9f-fbc9-4163-b262-6802aa258b92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/darkwebinformer.com/post/3lvecg4t6fs2b", "content": "", "creation_timestamp": "2025-08-01T18:40:36.746875Z"}, {"uuid": "04a54809-3bcd-4dcf-ab1a-6e728ee69e0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://thehackernews.com/2025/08/cursor-ai-code-editor-fixed-flaw.html", "content": "", "creation_timestamp": "2025-08-01T13:31:00.000000Z"}, {"uuid": "74e1eb83-34e9-4845-903d-9f0aafcf08d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3lvegzeza3527", "content": "", "creation_timestamp": "2025-08-01T20:03:01.812961Z"}, {"uuid": "aac72657-737e-4960-8369-a989620c4254", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lvf4dnf4nt22", "content": "", "creation_timestamp": "2025-08-02T02:24:34.837819Z"}, {"uuid": "c755624e-d2d3-489f-adc7-bf3640a07f10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/youtechinfo.bsky.social/post/3lvfo3zppca2i", "content": "", "creation_timestamp": "2025-08-02T07:42:25.872787Z"}, {"uuid": "b8f1b12f-5145-486f-a047-0114d763e775", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/ozzycloud.bsky.social/post/3lvgqm3az322l", "content": "", "creation_timestamp": "2025-08-02T17:59:52.404367Z"}, {"uuid": "6f7f8877-41bf-4b29-84e9-de93f7d9954c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lvhmyo5sn72t", "content": "", "creation_timestamp": "2025-08-03T02:27:59.669683Z"}, {"uuid": "8e0d0a13-52f5-473c-9b4b-3e78a63e357e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lvtwhci5y22v", "content": "", "creation_timestamp": "2025-08-07T23:49:11.048958Z"}, {"uuid": "2e53c6f4-829c-4ebb-9a20-a6271d5d8996", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/securestep9.bsky.social/post/3lvle7qm7yn2w", "content": "", "creation_timestamp": "2025-08-04T14:01:32.151710Z"}, {"uuid": "e395eaef-aba2-4244-8c39-81d48f5b39fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lvmr2eow6k2c", "content": "", "creation_timestamp": "2025-08-05T03:23:49.731673Z"}, {"uuid": "1e652903-5834-42e5-bc72-0bb4e0e7e17f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://t.me/TheDarkWebInformer/19184", "content": "\ud83d\udea8CVE-2025-54135: Cursor AI Code Editor Vulnerability Patched After Prompt Injection Exploit Allowed Remote Command Execution\n\nCVSS: 8.6\n\nVideo Credit: HiddenLayer\n\nAdvisory no longer available on GitHub: https://github.com/cursor/cursor/security/advisories/GHSA-4cxx-hrm3-49rm", "creation_timestamp": "2025-08-01T18:40:52.000000Z"}, {"uuid": "ae2f8fa8-ca94-4c7c-9b73-30d578c0b016", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lvr4obih4r25", "content": "", "creation_timestamp": "2025-08-06T21:02:37.317572Z"}, {"uuid": "13b95a35-2fbe-4439-a769-a7728069f893", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "published-proof-of-concept", "source": "Telegram/27qh-TYWigv_xshPNoZ9JsCsLYz-m8bcc18f3FyGHSadnSk", "content": "", "creation_timestamp": "2025-08-07T15:00:05.000000Z"}, {"uuid": "e7e03807-7811-4d8b-9c1a-df1138196310", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://gist.github.com/Darkcrai86/e415d0a95cb8194ceb3e8cf19d27e8be", "content": "", "creation_timestamp": "2025-09-11T07:20:14.000000Z"}, {"uuid": "391b05e3-6570-497e-8a8a-e6d16ba2315a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "Telegram/iI64sqpXHX16RsxykmtsFxvmMyE2wEh2he15cll_j-jnfA", "content": "", "creation_timestamp": "2025-08-01T18:23:18.000000Z"}, {"uuid": "9dd66f79-9a26-4c91-81d5-d137610afbf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "published-proof-of-concept", "source": "https://t.me/thehackernews/7272", "content": "\ud83d\udea8 A single Slack message could hijack Cursor\u2014AI code editor\u2014with zero clicks.\n\nCVE-2025-54135 let attackers run remote code just by posting in a public channel.\n\nCursor auto-executed it. No prompts. No approval.\n\nDetails here \u2192 https://thehackernews.com/2025/08/cursor-ai-code-editor-fixed-flaw.html", "creation_timestamp": "2025-08-01T15:45:09.000000Z"}, {"uuid": "40cd5b4c-c03e-40fe-b1be-2e31a4f3f9f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/46876", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA repo for CVE-2025-54135 reproduction\nURL\uff1ahttps://github.com/Cbdlll/test-mcp\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-08-07T07:37:53.000000Z"}, {"uuid": "d73b0b67-0869-4626-9a26-d5da47e9c56c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-54135", "type": "seen", "source": "https://t.me/HackerNewscyber/2278", "content": "\ud83d\udea8 \u0631\u0641\u0639 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0628\u062d\u0631\u0627\u0646\u06cc \u062f\u0631 \u0648\u06cc\u0631\u0627\u06cc\u0634\u06af\u0631 \u0647\u0648\u0634 \u0645\u0635\u0646\u0648\u0639\u06cc Cursor\n\n\u26aa\ufe0f\u062f\u0631 \u0627\u062f\u0627\u0645\u0647: Cursor\u060c \u0648\u06cc\u0631\u0627\u06cc\u0634\u06af\u0631 \u0645\u062d\u0628\u0648\u0628 \u06a9\u062f\u0646\u0648\u06cc\u0633\u06cc \u0645\u0628\u062a\u0646\u06cc \u0628\u0631 \u0647\u0648\u0634 \u0645\u0635\u0646\u0648\u0639\u06cc\u060c \u0627\u062e\u06cc\u0631\u0627\u064b \u062f\u0686\u0627\u0631 \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062e\u0637\u0631\u0646\u0627\u06a9 \u0628\u0627 \u0642\u0627\u0628\u0644\u06cc\u062a \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 (RCE) \u0634\u062f\u0647 \u0628\u0648\u062f \u06a9\u0647 \u0628\u0627 \u0627\u0646\u062a\u0634\u0627\u0631 \u0646\u0633\u062e\u0647 \u06f1.\u06f3 \u062f\u0631 \u062a\u0627\u0631\u06cc\u062e \u06f2\u06f9 \u062c\u0648\u0644\u0627\u06cc \u06f2\u06f0\u06f2\u06f5 \u0631\u0641\u0639 \u0634\u062f\u0647 \u0627\u0633\u062a. \u0627\u06cc\u0646 \u0646\u0642\u0635 \u0627\u0645\u0646\u06cc\u062a\u06cc \u06a9\u0647 \u0628\u0627 \u0634\u0646\u0627\u0633\u0647 CVE-2025-54135 \u0648 \u0646\u0627\u0645 CurXecute \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647\u060c \u0628\u0647 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0627\u062f \u062a\u0646\u0647\u0627 \u0628\u0627 \u06cc\u06a9 \u067e\u06cc\u0627\u0645 \u0645\u062e\u0631\u0628\u060c \u06a9\u0646\u062a\u0631\u0644 \u06a9\u0627\u0645\u0644 \u0633\u06cc\u0633\u062a\u0645 \u06a9\u0627\u0631\u0628\u0631 \u0631\u0627 \u062f\u0631 \u062f\u0633\u062a \u0628\u06af\u06cc\u0631\u0646\u062f.\n\n\u26aa\ufe0f\u0645\u0634\u06a9\u0644 \u0627\u0632 \u0622\u0646\u200c\u062c\u0627 \u0622\u063a\u0627\u0632 \u0645\u06cc\u200c\u0634\u062f \u06a9\u0647 Cursor \u0628\u0647 \u0633\u0631\u0648\u0631\u0647\u0627\u06cc \u062e\u0627\u0631\u062c\u06cc MCP \u0627\u062c\u0627\u0632\u0647 \u0627\u062c\u0631\u0627\u06cc \u062e\u0648\u062f\u06a9\u0627\u0631 \u0627\u0628\u0632\u0627\u0631\u0647\u0627 \u0631\u0627 \u0628\u062f\u0648\u0646 \u062a\u0623\u06cc\u06cc\u062f \u06a9\u0627\u0631\u0628\u0631 \u0645\u06cc\u200c\u062f\u0627\u062f. \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0633\u062a \u0628\u0627 \u062a\u0632\u0631\u06cc\u0642 \u06cc\u06a9 \u067e\u06cc\u0627\u0645 \u0645\u062e\u0631\u0628 \u062f\u0631 \u0645\u062d\u06cc\u0637\u200c\u0647\u0627\u06cc\u06cc \u0645\u0627\u0646\u0646\u062f Slack \u06cc\u0627 \u062d\u062a\u06cc \u0641\u0627\u06cc\u0644 README \u062f\u0631 \u06af\u06cc\u062a\u200c\u0647\u0627\u0628\u060c \u0641\u0627\u06cc\u0644 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc mcp.json \u0631\u0627 \u0628\u0627\u0632\u0646\u0648\u06cc\u0633\u06cc \u06a9\u0631\u062f\u0647 \u0648 \u062f\u0633\u062a\u0648\u0631\u0627\u062a \u062f\u0644\u062e\u0648\u0627\u0647 \u062e\u0648\u062f \u0631\u0627 \u0627\u062c\u0631\u0627 \u06a9\u0646\u062f\u061b \u0627\u0632 \u062c\u0645\u0644\u0647 \u0633\u0631\u0642\u062a \u06a9\u0644\u06cc\u062f\u0647\u0627\u06cc SSH\u060c \u0627\u062c\u0631\u0627\u06cc \u0627\u0633\u06a9\u0631\u06cc\u067e\u062a\u200c\u0647\u0627\u06cc \u0645\u062e\u0631\u0628 \u06cc\u0627 \u062f\u0648\u0631 \u0632\u062f\u0646 \u0645\u062d\u062f\u0648\u062f\u06cc\u062a\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0628\u0627 \u0631\u0648\u0634\u200c\u0647\u0627\u06cc\u06cc \u0645\u0627\u0646\u0646\u062f \u0631\u0645\u0632\u06af\u0630\u0627\u0631\u06cc Base64.\n\n\u26aa\ufe0f\u062f\u0631 \u0646\u0633\u062e\u0647 \u062c\u062f\u06cc\u062f\u060c Cursor \u0627\u062c\u0631\u0627\u06cc \u062e\u0648\u062f\u06a9\u0627\u0631 \u0645\u0628\u062a\u0646\u06cc \u0628\u0631 \u0644\u06cc\u0633\u062a \u0633\u06cc\u0627\u0647 \u0631\u0627 \u06a9\u0646\u0627\u0631 \u06af\u0630\u0627\u0634\u062a\u0647 \u0648 \u0633\u06cc\u0633\u062a\u0645 \u0627\u0645\u0646\u200c\u062a\u0631\u06cc \u0628\u0631 \u067e\u0627\u06cc\u0647 \u0644\u06cc\u0633\u062a \u0633\u0641\u06cc\u062f \u067e\u06cc\u0627\u062f\u0647\u200c\u0633\u0627\u0632\u06cc \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a. \u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644\u060c \u06a9\u0627\u0631\u0634\u0646\u0627\u0633\u0627\u0646 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0647\u0634\u062f\u0627\u0631 \u062f\u0627\u062f\u0647\u200c\u0627\u0646\u062f \u06a9\u0647 \u0646\u0628\u0627\u06cc\u062f \u0628\u0647 \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u067e\u06cc\u0634\u200c\u0641\u0631\u0636 \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u0647\u0648\u0634 \u0645\u0635\u0646\u0648\u0639\u06cc \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u06a9\u0627\u0645\u0644 \u062f\u0627\u0634\u062a \u0648 \u0645\u0633\u0626\u0648\u0644\u06cc\u062a \u0627\u0635\u0644\u06cc \u062a\u0623\u0645\u06cc\u0646 \u0627\u0645\u0646\u06cc\u062a \u0628\u0631 \u0639\u0647\u062f\u0647 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0648 \u0633\u0627\u0632\u0645\u0627\u0646\u200c\u0647\u0627\u0633\u062a.\n\n\ud83d\udc9c @HackerNewsCyber", "creation_timestamp": "2025-08-04T12:57:00.000000Z"}]}