Critical vulnerability in AI coding platform Base44 allowing unauthorized access (opens in new tab)

(wiz.io)

122 pointswaldopat7mo ago74 comments

74 comments

"The vulnerability we discovered was remarkably simple to exploit - by providing only a non-secret app_id value to undocumented registration and email verification endpoints." So you could sign yourself up as editor / collaborator on any app once you knew the app's ID.

Jeez, that's sloppy. My colleague in 2000 discovered you could browse any account on his bank's website by just changing the (sequential!) account IDs in the URL. In a lot of ways we've made great strides in security over the last 25 years... and in many ways, we haven't.

subw00f7mo ago

Prepare for a whole new era of step backs when everyone is a “prompt engineer”.

andersa7mo ago

How nice to know they will be implementing the mandatory age verification systems for this new generation of the internet!

Cthulhu_7mo ago

At least they're costly mistakes that a new generation of decision makers will hopefully learn from.

roozbeh187mo ago

20 years ago the school class enrollment website allowed just that by changing account IDs in URL, we were bypassing the priority enrollment. I had fun adding my friends and I to classes we wanted.

cj7mo ago

I took a slightly different approach and simply wrote a script that checked availability every minute, and then sent me a text message alert when a seat opened up.

(Upperclassmen often switched their schedules around after the priority enrollment deadline ended)

Not as bullet proof as your approach!

doawoo7mo ago

Incredible, my university class reg system had un-sanitized input for the class search field so if you knew the SQL you could find exactly how full a class was and dump the whole table of classes without needing to wait for your reg to open.

And pretty sure you could insert your student ID into the class that way too :)

1 more reply

cwmoore7mo ago

That’s useful. But 30 years ago you could iterate Social Security Numbers.

captn3m07mo ago

I reported a security vulnerability yesterday, which amounts to a admin=true cookie bypass.

srcport564457mo ago

Have we really made "progress" ? Even in 2000 I doubt people were allowed to walk into a bank and look at everyone's account details.

NoPicklez7mo ago

Well we have because that vulnerability in websites is formally recognized in OWASP and has been fairly well eradicated since then.

dpoloncsak7mo ago

...How long did it take a transfer to settle in the 2000s

3 more replies

zamalek7mo ago

Hot on the wheels on the vibe-coded Tea breach. Things are looking great for vibe coding.

Don't get me wrong, I have been been more hands off (though not completely, and very prescriptive) with an SPA side project and it's going great. Claude makes way better looking UIs than my dog ugly developer UIs. But vibing auth? That should seriously count as _legal_ gross negligence.

jerf7mo ago

At the moment, I would call "writing secure code that can be put on the internet" to be a super-human task. That is, even our most highly skilled human beings currently can't be blindly trusted to accomplish it; it requires review by teams of experts. We already don't even trust humans, so trusting AIs for the forseeable future (as much as "the forseeable future" may be contracting on us) is not something we should be doing.

And so as to avoid the reader binning this post into "oh just some human triumphalist AI denier", remember I just said I don't trust individual humans on this point either. Everyone, even experts at coding secure code, should be reviewed by other experts at this point.

I suspect this is going to prove to be something that LLMs can't do reliably, by their architecture. It's going to be a next-generation AI thing, whatever that may prove to be.

FiniteIntegral7mo ago

Agreed. Security is a task that not even a group of humans can perform with upmost scrutiny or perfection. 'Eternal vigilance is the price of liberty' and such. People want to move fast and break things without the backing infrastructure/maintenance (like... actually checking what the AI wrote).

1 more reply

_fat_santa7mo ago

I'm not sure I would even call what happened with Tea a breach. They just straight up didn't have any authentication around those endpoints.

sunaookami7mo ago

The Tea breach was not due to vibe-coding btw, the code was from the beginning of 2024 when vibe coding wasn't even possible.

bluefirebrand7mo ago

Just because no one had coined the term vibe coding yet doesn't mean people weren't trying what would eventually be called vibe coding

We had LLMs in 2024 that you could certainly try vibe coding with, but probably shouldn't have

Just like we have LLMs today that you can certainly try vibe coding with but probably shouldn't

1 more reply

QuadmasterXLII7mo ago

Vibe coding started working in summer 2023, see e.g. https://github.com/HastingsGreer/jstreb/blob/1ccedf82ec463dc...

the spectacular overcommenting has been here the whole time

Progress since then has mostly been people and tools catching up to the models, the limit of what the models can code has been pretty stagnant the last couple years

ryandrake7mo ago

Whether it's strictly Vibe Coding™ or traditional coding by an incompetent amateur, the result is the same: defective and vulnerable slop.

1 more reply

dingnuts7mo ago

By Karpathy's definition it still isn't possible. But I've definitely been hearing about AI generated code being just as good as my code since 2022.

Don't gaslight us about timelines. The boosters have been telling us amateurs can code and we're all worthless for three and a half years now.

When ChatGPT was launched, they said we'd all be on the streets by now.

What I don't understand is the gleeful receipt of that news by some programmers

2 more replies

IanCal7mo ago

Nothing here says auth was vibe coded. It’s a platform for vibe coding.

zamalek7mo ago

From the founder himself: https://www.lennysnewsletter.com/p/the-base44-bootstrapped-s...

loupol7mo ago

There's also nothing saying they are not dog fooding at least a little bit.

2 more replies

JohnMakin7mo ago

You don’t think they dog food their own app dev? Interesting

1 more reply

belter7mo ago

"Vulnerability discovered in Google Gemini CLI, patch required" - https://www.techzine.eu/news/security/133402/vulnerability-d...

steveBK1237mo ago

I only know Base44 from the bombardment of YouTube ads for them I receive. Glad to hear its going well.

toddmorey7mo ago

This is so true. I've ONLY heard them mentioned from their own ads, never even once in the wild. Must be one hell of an ad budget.

Frieren7mo ago

For AI companies visibility is more important than the actual product. This is a characteristic of many bubbles were getting the word out is the only thing needed to get investors. Investors are scrambling to put as much money in AI as possible, so quality is not a concern for "entrepreneurs".

esafak7mo ago

It looks like they blew their budget on ads instead of engineers :)

steveBK1237mo ago

Just checking back in here to note I am legitimately considering a Youtube sub just to make the Base44 ads go away. So the ads are having some impact!

koakuma-chan7mo ago

Why not use an Adblock?

xdfgh11127mo ago

Me too. They make it seem like you can vibe code an entire web shop in one prompt. In reality they charge by the token so if you hit a wall trying to get the AI to do stuff you run up a huge bill but it's too late to get out.

swyx7mo ago

oh interesting. do you think that was a big part of their growth strategy pre acquisition or did the ads only pick up post acquisition?

bgwalter7mo ago

Fun facts: All of Wix, Wiz, base44 were founded by ex Unit 8200 members. Wix was used by the NSO group to create fake websites for targeting critics:

https://www.ynetnews.com/articles/0,7340,L-5461537,00.html

sschueller7mo ago

I wonder how many of their executives can be directly linked to war crimes and/or crimes against humanity.

galnagli7mo ago

Happy to answer questions : )

waldopatOP7mo ago

I've got a question! I'd say what's happening with viebcoding is really an acceleration of move fast and break things. Uber and Snapchat both had major security vulnerabilities, resulting in millions of user records leaked, in their hey day of the mid 2010s. And that was WITH whatever DevOps pipeline, code review or other best practices likely in place.

What's unique about Tea or Base44 (or Replit founder deleting his codebase) is A) the disregard for security best practices and B) the speed at which they both grew and exposed vulnerabilities.

So my question is, how do you see the balance of cybersecurity and AI as everything moves faster than ever before?

galnagli7mo ago

I see companies deploy and trust AI without really investing into security, it will be very easy in the near future to find simple, devastating bugs : )

waldopatOP7mo ago

^^^ Hey YC Fam, this is the author

zahlman7mo ago

> Platforms like Loveable, Bolt, and Base44 > Wiz Research has been looking into the security posture > (recently acquired by Wix following an amazingly rapid rise)

Anyone else find all these names really surreal?

(Yeah, Google is kind of a dumb name too, but at least there's a cute story behind it.)

(Okay, I knew Wix had been around for quite some time, but I didn't expect it to be almost as old as YouTube....)

an0malous7mo ago

It’ll get more surreal because the supply of domains is smaller than the growth of ideas

j457mo ago

It was only a few months old, how can technical debt and discoveries not be expected?

Wix was probably acquiring a growing userbase.

waldopatOP7mo ago

That's my take too. Perhaps $80M for free organic users was a steal?

I do think credit is due to the founder, because he was able to single handedly build and market a valuable solution. That said, he also pushed code every day without code reviews. This is how you get technical debt and security vulnerabilities so fast.

j457mo ago

For sure, shipping and iterating quickly to solve a problem people had vs just one's own vision and interpretation is really commendable.

The scary and exciting thing is it's still possible today with other needs.

darepublic7mo ago

These platforms feel like their authors just stick a big bow (uniquely branded ofc) on top of llms. I don't want to undervalue the importance of good glue code.. but that's all I see here. Doesn't deserve the glossy sheen or accolades imo.

sandeepkd7mo ago

I might go to the extent of saying that this is classical example of security by obscurity, and for good or bad reasons, a lot of applications would fall into this category, one way or another.

swyx7mo ago

soo Wiz found a vuln in Wix?

this is israeli on israeli violence

oc17mo ago

This will be the golden age of hackers for lulz or money, security researchers and script kiddies (fka idea guys)

jus3sixty7mo ago

Every single day someone dies a wrongful death, a plane crashes, a serious data breach occurs, and someone slips on a banana peel.

None of these things will ever stop the billionaire gravy train because of something called “Risk Management.” I don’t think our “vibe-coded AI slopware” is an exception.

htrp7mo ago

Wonder if Wix had any contractual reps/warranties around the state of the Base44 codebase.

financetechbro7mo ago

I would expect so to some degree. Part of acquisition process is tech diligence usually done by a third party firm. But it’s not the deepest review. They run some code scans and dig into security policies and procedures, and then create a report with their findings which is used for R&W, insurance, etc.

DonHopkins7mo ago

"Vibe Diligence"

1 more reply

tracker17mo ago

Security analysis via AI...

uponasmile7mo ago

>he vulnerability was fixed in less than 24 hours

I wonder if they fixed it manually or used Base44 to fix it

bitwize7mo ago

Remember, the S in GenAI is for security.

dangoodmanUT7mo ago

80M to wix right?

crook1234567mo ago

Base44 is just another builder.ai scam

j / k navigate · click thread line to collapse

74 comments

toddmorey7mo ago

subw00f7mo ago

Prepare for a whole new era of step backs when everyone is a “prompt engineer”.

andersa7mo ago

How nice to know they will be implementing the mandatory age verification systems for this new generation of the internet!

Cthulhu_7mo ago

At least they're costly mistakes that a new generation of decision makers will hopefully learn from.

roozbeh187mo ago

20 years ago the school class enrollment website allowed just that by changing account IDs in URL, we were bypassing the priority enrollment. I had fun adding my friends and I to classes we wanted.

cj7mo ago

I took a slightly different approach and simply wrote a script that checked availability every minute, and then sent me a text message alert when a seat opened up.

(Upperclassmen often switched their schedules around after the priority enrollment deadline ended)

Not as bullet proof as your approach!

doawoo7mo ago

And pretty sure you could insert your student ID into the class that way too :)

1 more reply

cwmoore7mo ago

That’s useful. But 30 years ago you could iterate Social Security Numbers.

captn3m07mo ago

I reported a security vulnerability yesterday, which amounts to a admin=true cookie bypass.

srcport564457mo ago

Have we really made "progress" ? Even in 2000 I doubt people were allowed to walk into a bank and look at everyone's account details.

NoPicklez7mo ago

Well we have because that vulnerability in websites is formally recognized in OWASP and has been fairly well eradicated since then.

dpoloncsak7mo ago

...How long did it take a transfer to settle in the 2000s

3 more replies

zamalek7mo ago

Hot on the wheels on the vibe-coded Tea breach. Things are looking great for vibe coding.

jerf7mo ago

I suspect this is going to prove to be something that LLMs can't do reliably, by their architecture. It's going to be a next-generation AI thing, whatever that may prove to be.

FiniteIntegral7mo ago

1 more reply

_fat_santa7mo ago

I'm not sure I would even call what happened with Tea a breach. They just straight up didn't have any authentication around those endpoints.

sunaookami7mo ago

The Tea breach was not due to vibe-coding btw, the code was from the beginning of 2024 when vibe coding wasn't even possible.

bluefirebrand7mo ago

Just because no one had coined the term vibe coding yet doesn't mean people weren't trying what would eventually be called vibe coding

We had LLMs in 2024 that you could certainly try vibe coding with, but probably shouldn't have

Just like we have LLMs today that you can certainly try vibe coding with but probably shouldn't

1 more reply

QuadmasterXLII7mo ago

Vibe coding started working in summer 2023, see e.g. https://github.com/HastingsGreer/jstreb/blob/1ccedf82ec463dc...

the spectacular overcommenting has been here the whole time

Progress since then has mostly been people and tools catching up to the models, the limit of what the models can code has been pretty stagnant the last couple years

ryandrake7mo ago

Whether it's strictly Vibe Coding™ or traditional coding by an incompetent amateur, the result is the same: defective and vulnerable slop.

1 more reply

dingnuts7mo ago

By Karpathy's definition it still isn't possible. But I've definitely been hearing about AI generated code being just as good as my code since 2022.

Don't gaslight us about timelines. The boosters have been telling us amateurs can code and we're all worthless for three and a half years now.

When ChatGPT was launched, they said we'd all be on the streets by now.

What I don't understand is the gleeful receipt of that news by some programmers

2 more replies

IanCal7mo ago

Nothing here says auth was vibe coded. It’s a platform for vibe coding.

zamalek7mo ago

From the founder himself: https://www.lennysnewsletter.com/p/the-base44-bootstrapped-s...

loupol7mo ago

There's also nothing saying they are not dog fooding at least a little bit.

2 more replies

JohnMakin7mo ago

You don’t think they dog food their own app dev? Interesting

1 more reply

belter7mo ago

"Vulnerability discovered in Google Gemini CLI, patch required" - https://www.techzine.eu/news/security/133402/vulnerability-d...

steveBK1237mo ago

I only know Base44 from the bombardment of YouTube ads for them I receive. Glad to hear its going well.

toddmorey7mo ago

This is so true. I've ONLY heard them mentioned from their own ads, never even once in the wild. Must be one hell of an ad budget.

Frieren7mo ago

esafak7mo ago

It looks like they blew their budget on ads instead of engineers :)

steveBK1237mo ago

Just checking back in here to note I am legitimately considering a Youtube sub just to make the Base44 ads go away. So the ads are having some impact!

koakuma-chan7mo ago

Why not use an Adblock?

xdfgh11127mo ago

swyx7mo ago

oh interesting. do you think that was a big part of their growth strategy pre acquisition or did the ads only pick up post acquisition?

bgwalter7mo ago

Fun facts: All of Wix, Wiz, base44 were founded by ex Unit 8200 members. Wix was used by the NSO group to create fake websites for targeting critics:

https://www.ynetnews.com/articles/0,7340,L-5461537,00.html

sschueller7mo ago

I wonder how many of their executives can be directly linked to war crimes and/or crimes against humanity.

galnagli7mo ago

Happy to answer questions : )

waldopatOP7mo ago

What's unique about Tea or Base44 (or Replit founder deleting his codebase) is A) the disregard for security best practices and B) the speed at which they both grew and exposed vulnerabilities.

So my question is, how do you see the balance of cybersecurity and AI as everything moves faster than ever before?

galnagli7mo ago

I see companies deploy and trust AI without really investing into security, it will be very easy in the near future to find simple, devastating bugs : )

waldopatOP7mo ago

^^^ Hey YC Fam, this is the author

zahlman7mo ago

> Platforms like Loveable, Bolt, and Base44 > Wiz Research has been looking into the security posture > (recently acquired by Wix following an amazingly rapid rise)

Anyone else find all these names really surreal?

(Yeah, Google is kind of a dumb name too, but at least there's a cute story behind it.)

(Okay, I knew Wix had been around for quite some time, but I didn't expect it to be almost as old as YouTube....)

an0malous7mo ago

It’ll get more surreal because the supply of domains is smaller than the growth of ideas

j457mo ago

It was only a few months old, how can technical debt and discoveries not be expected?

Wix was probably acquiring a growing userbase.

waldopatOP7mo ago

That's my take too. Perhaps $80M for free organic users was a steal?

j457mo ago

For sure, shipping and iterating quickly to solve a problem people had vs just one's own vision and interpretation is really commendable.

The scary and exciting thing is it's still possible today with other needs.

darepublic7mo ago

sandeepkd7mo ago

I might go to the extent of saying that this is classical example of security by obscurity, and for good or bad reasons, a lot of applications would fall into this category, one way or another.

swyx7mo ago

soo Wiz found a vuln in Wix?

this is israeli on israeli violence

oc17mo ago

This will be the golden age of hackers for lulz or money, security researchers and script kiddies (fka idea guys)

jus3sixty7mo ago

Every single day someone dies a wrongful death, a plane crashes, a serious data breach occurs, and someone slips on a banana peel.

None of these things will ever stop the billionaire gravy train because of something called “Risk Management.” I don’t think our “vibe-coded AI slopware” is an exception.

htrp7mo ago

Wonder if Wix had any contractual reps/warranties around the state of the Base44 codebase.

financetechbro7mo ago

DonHopkins7mo ago

"Vibe Diligence"

1 more reply

tracker17mo ago

Security analysis via AI...

uponasmile7mo ago

>he vulnerability was fixed in less than 24 hours

I wonder if they fixed it manually or used Base44 to fix it

bitwize7mo ago

Remember, the S in GenAI is for security.

dangoodmanUT7mo ago

80M to wix right?

crook1234567mo ago

Base44 is just another builder.ai scam

j / k navigate · click thread line to collapse