MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
startup
Search

The Hottest New Vibe Coding Startup May Be a Sitting Duck For Hackers

Friday May 30, 2025. 08:15 PM , from Slashdot
The Hottest New Vibe Coding Startup May Be a Sitting Duck For Hackers
Lovable, a Swedish startup that allows users to create websites and apps through natural language prompts, failed to address a critical security vulnerability for months after being notified, according to a new report. A study by Replit employees found that 170 of 1,645 Lovable-created applications exposed sensitive user information including names, email addresses, financial data, and API keys that could allow hackers to run up charges on customers' accounts.

The vulnerability, published this week in the National Vulnerabilities Database, stems from misconfigured Supabase databases that Lovable's AI-generated code connects to for storing user data. Despite being alerted to the problem in March, Lovable initially dismissed concerns and only later implemented a limited security scan that checks whether database access controls are enabled but cannot determine if they are properly configured.

Read more of this story at Slashdot.
Read more at Slashdot
https://it.slashdot.org/story/25/05/30/1810246/the-hottest-new-vibe-coding-startup-may-be-a-sitting-...

Related News

startup Cisco president says dredging coding syntax from wetware memory wastes engineers' expensive synapses TheRegisterJun 11
hackers What the AI coding assistants get right, and where they go wrong InfoWorldJun 10
vulnerability Your all-in-one coding workshop awaits, and now it's just $28 for life BoingBoingJun 9
security Startup Puts a Logical Qubit In a Single Piece of Hardware SlashdotJun 7
user I've seen photos of "topless girls of an uncertain age sitting on Trump's lap," says biographer BoingBoingJun 7
data Top Researchers Leave Intel To Build Startup With 'The Biggest, Baddest CPU' SlashdotJun 7
database The digital pitfalls that can make or break a startup's success BetaNewsJun 6
hottest Elon Musk’s xAI: Staggering $113B Valuation – Startup’s Debt Package In Billions, Too eWeekJun 6
are Andrew Ng Says Vibe Coding is a Bad Name For a Very Real and Exhausting Job SlashdotJun 5
being Reddit Sues AI Startup Anthropic For Breach of Contract, 'Unfair Competition' SlashdotJun 4
coding AI Startups Revolutionize Coding Industry, Leading To Sky-High Valuations SlashdotJun 4
may Chaos RAT malware strikes Linux and Windows as hackers exploit its flaws BetaNewsJun 4
lovable The Rise of ‘Vibe Hacking’ Is the Next AI Nightmare Wired: Tech.Jun 4
duck “AI” coding chatbot funded by Microsoft were Actually Indians OS NewsJun 4
sitting AI Startup Revealed To Be 700 Indian Employees Pretending To Be Chatbots SlashdotJun 3
startup Microsoft releases emergency fix for Windows 11 startup problems BetaNewsJun 3
hackers Microsoft issues out-of-band patches for Windows 11 startup failure ComputerWorldJun 2
vulnerability 7 ways to improve your AI coding results InfoWorldJun 2
security Will 'Vibe Coding' Transform Programming? SlashdotJun 1
user ‘Undeniably New’ AI-Generated Interactive, Real-Time Video From Startup With Pixar Connection eWeekMay 30
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
Jun, Sun 22 - 00:32 CEST