MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
startup
Recherche

The Hottest New Vibe Coding Startup May Be a Sitting Duck For Hackers

vendredi 30 mai 2025, 20:15 , par Slashdot
The Hottest New Vibe Coding Startup May Be a Sitting Duck For Hackers
Lovable, a Swedish startup that allows users to create websites and apps through natural language prompts, failed to address a critical security vulnerability for months after being notified, according to a new report. A study by Replit employees found that 170 of 1,645 Lovable-created applications exposed sensitive user information including names, email addresses, financial data, and API keys that could allow hackers to run up charges on customers' accounts.

The vulnerability, published this week in the National Vulnerabilities Database, stems from misconfigured Supabase databases that Lovable's AI-generated code connects to for storing user data. Despite being alerted to the problem in March, Lovable initially dismissed concerns and only later implemented a limited security scan that checks whether database access controls are enabled but cannot determine if they are properly configured.

Read more of this story at Slashdot.
Lire la suite sur Slashdot
https://it.slashdot.org/story/25/05/30/1810246/the-hottest-new-vibe-coding-startup-may-be-a-sitting-...

Voir aussi

startup Exegol : la plateforme ultime pour pentesters et hackers éthiques ? Zataz11 Jun
hackers Cisco president says dredging coding syntax from wetware memory wastes engineers' expensive synapses TheRegister11 Jun
vulnerability What the AI coding assistants get right, and where they go wrong InfoWorld10 Jun
security Your all-in-one coding workshop awaits, and now it's just $28 for life BoingBoing 9 Jun
user Startup Puts a Logical Qubit In a Single Piece of Hardware Slashdot 7 Jun
data I've seen photos of "topless girls of an uncertain age sitting on Trump's lap," says biographer BoingBoing 7 Jun
database Top Researchers Leave Intel To Build Startup With 'The Biggest, Baddest CPU' Slashdot 7 Jun
hottest The digital pitfalls that can make or break a startup's success BetaNews 6 Jun
are Elon Musk’s xAI: Staggering $113B Valuation – Startup’s Debt Package In Billions, Too eWeek 6 Jun
being Andrew Ng Says Vibe Coding is a Bad Name For a Very Real and Exhausting Job Slashdot 5 Jun
coding Reddit Sues AI Startup Anthropic For Breach of Contract, 'Unfair Competition' Slashdot 4 Jun
may AI Startups Revolutionize Coding Industry, Leading To Sky-High Valuations Slashdot 4 Jun
lovable Chaos RAT malware strikes Linux and Windows as hackers exploit its flaws BetaNews 4 Jun
duck The Rise of ‘Vibe Hacking’ Is the Next AI Nightmare Wired: Tech. 4 Jun
sitting Quand l’IA défie les hackers Zataz 4 Jun
startup “AI” coding chatbot funded by Microsoft were Actually Indians OS News 4 Jun
hackers AI Startup Revealed To Be 700 Indian Employees Pretending To Be Chatbots Slashdot 3 Jun
vulnerability Microsoft releases emergency fix for Windows 11 startup problems BetaNews 3 Jun
security Duck Detective: The Ghost of Glamping Factornews 3 Jun
user Microsoft issues out-of-band patches for Windows 11 startup failure ComputerWorld 2 Jun
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Date Actuelle
sam. 21 juin - 19:59 CEST