Security firm Salt Labs found critical vulnerabilities in ChatGPT plugins, posing risks for user data and account takeovers.

Security firm Salt Labs discovered three critical vulnerabilities in ChatGPT plugins, posing risks for sensitive user data and account takeovers. Vulnerabilities include flaws in the plugin installation process, PluginLab, and OAuth redirection manipulation. Organizations are urged to review plugins and conduct code security reviews, as these issues raise concerns about potential proprietary information theft and account takeovers on third-party platforms.

March 13, 2024
4 Articles

Further Reading