» Tag
sandbox
2 posts6–Jul 12, 2026
WriteOut Flaw in Writer AI Enabled Cross-Tenant Account Takeover
A critical flaw dubbed WriteOut let attackers hijack any Writer AI account by leaking session cookies through the platform's sandbox. Writer has since patched it.
ai-securitywriter-aisandboxvulnerability-disclosureCursor Sandbox Escape Shows AI Agents Need Kernel Boundaries
Two critical bugs in Cursor's command sandbox let an attacker-controlled AI agent write outside it and reach RCE. Both are fixed in Cursor 3.0.
cursorai-agentssandboxcve