Back to servers
A proof-of-concept attack that exploits Model Context Protocol (MCP) tool registration to achieve persistent agent poisoning in AI assistants like Cursor, embedding malicious instructions that persist across chat contexts without requiring tool execution.
glama
No tools available for this server
Reviews
No reviews yet
Sign in to write a review