{"uuid": "d7d3b202-c01b-43b6-a225-bd35491c2337", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-26268", "type": "seen", "source": "https://bsky.app/profile/armor-1.bsky.social/post/3mliaz6p77c27", "content": "CVE-2026-26268: Cursor RCE via hidden Git hooks. CVSS 8.1. Opening a prepared repo runs code in your session, no prompt injection needed. Fixed in Cursor 2.5.", "creation_timestamp": "2026-05-10T07:40:26.947038Z"}