Topic: openvsx

Sort by: Relevance | Date
  • Critical Zero-Day Threat for Cursor & Windsurf Users Exposed
    July 13, 2025
    90%

    Critical Zero-Day Threat for Cursor & Windsurf Users Exposed

    A zero-day vulnerability in AI coding tools (e.g., Cursor, Windsurf) exposed developers to machine hijacking via compromised extensions, with attackers exploiting OpenVSX's automated publishing system. The flaw, dubbed VSXPloit, allowed attackers to push malicious updates silently through depende...

    Read More »

Related Topics

ai coding tools (1) supply chain attack (1) zero-day vulnerability (1) vsxploit (1) extension marketplace (1) developer security (1) zero-trust approach (1) eclipse foundation (1)
Close

Adblock Detected

We noticed you're using an ad blocker. To continue enjoying our content and support our work, please consider disabling your ad blocker for this site. Ads help keep our content free and accessible. Thank you for your understanding!