Vibe coding is causing ‘thousands’ of data security vulnerabilities
- May 12
- 1 min read
PC MAG — In research first shared with Wired, a team led by security researcher Dor Zvi identified 5,000 vibe-coded web applications created using the AI software development tools Lovable, Replit, Base44, and Netlify that had “virtually no security or authentication of any kind.”
RedAccess claims that in some cases, anyone who found the correct web URL could access the apps and their data. Meanwhile, other vibe-coded web apps had “only trivial barriers” to accessing app data—for example, signing in with “any email address.”
Read the full story | PC MAG
