Cursor Agent Poisoning
Rank #41413glama/Omprakash97/exploit-mcp
A proof-of-concept attack that exploits Model Context Protocol (MCP) tool registration to achieve persistent agent poisoning in AI assistants like Cursor, embedding malicious instructions that persist across chat contexts without requiring tool execution.
Cursor Agent Poisoning is a Model Context Protocol (MCP) server published by Omprakash97. It ranks #41413 of 58,832 servers tracked on MCP Toplist. Cursor Agent Poisoning is listed on Glama, and ships as a single rolling release with no explicit version metadata. It was first listed on Jul 26, 2025.
Ranks ahead of 17,419 of 58,832 servers on MCP Toplist.
Listed on 1 registry
Omprakash97
Not versioned
This server is published through a registry that does not expose explicit version metadata. The listing tracks a single rolling release.
Frequently asked questions
- What is Cursor Agent Poisoning?
- A proof-of-concept attack that exploits Model Context Protocol (MCP) tool registration to achieve persistent agent poisoning in AI assistants like Cursor, embedding malicious instructions that persist across chat contexts without requiring tool execution.
- Who maintains Cursor Agent Poisoning?
- Cursor Agent Poisoning is maintained by Omprakash97, which publishes 1 MCP server (0 total versions) tracked on MCP Toplist.
- Is Cursor Agent Poisoning an official MCP server?
- Cursor Agent Poisoning is not on the Official MCP Registry. It is listed on Glama.
- How many versions does Cursor Agent Poisoning have?
- Cursor Agent Poisoning ships as a single rolling release with no explicit version metadata.
- Where can I find the source code for Cursor Agent Poisoning?
- The source code for Cursor Agent Poisoning is hosted at github.com/Omprakash97/exploit-mcp.