Techly NewsGet the app

Get the latest tech news

Critical vulnerability in AI coding platform Base44 allowing unauthorized access


New discovery underscores security implications of AI-powered development and the rise of Vibe Coding Platforms.

Wiz Research has identified a critical vulnerability affecting the popular vibe coding platform Base44 ( recently acquired by Wix following an amazingly rapid rise) which allowed unauthorized access to private applications built by its users. The rapid enterprise adoption of these platforms for critical functions - handling sensitive data through internal chatbots, automations, and business tools - is precisely why we decided to focus our research efforts on this emerging attack surface. During our research we managed to confirm authentication bypass was available across several enterprise applications that utilized the popular vibe coding platform for internal chatbots, knowledge bases, PII & HR operations - significant sensitive data that could have been leaked to unauthorized attackers.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Days

Days

Photo of Wix

Wix

Photo of Base44

Base44

Related news:

News photo

Ramp hits $22.5B valuation just 45 days after reaching $16B

News photo

You can get $200 in gift cards for trying AT&T's fiber internet - but only for two more days

News photo

Exploiting zero days in abandoned hardware

« Crush: Glamourous AI coding agent for your favourite terminal
Optician Sans – A free font based on historical eye charts and optotypes »