A severe security vulnerability, designated as CVE-2025-48757, has been discovered in Lovable’s implementation of Row Level Security (RLS) policies, allowing attackers to bypass authentication controls and inject malicious data into applications built on the platform. The vulnerability, first identified on March 20, 2025, affects hundreds of projects and exposes sensitive user information, including personal data, […]
The post Critical Vulnerability in Lovable’s Security Policies Let Attackers Inject Malicious Code appeared first on Cyber Security News.
This article has been indexed from Cyber Security News