Salt Security, an API security firm, conducted an analysis of ChatGPT plugins and discovered several types of vulnerabilities that could have been exploited to obtain potentially sensitive data and take over third-party accounts.
ChatGPT plugins allow users to get up-to-date information and integrate ChatGPT with third-party services. For example, plugins can enable users to interact with their GitHub and Google Drive accounts.
However, when a plugin is used, ChatGPT requires permission to send the user’s data to a plugin-associated website, and the plugin may require access to the user’s account on the service with which it interacts.
Read More: ChatGPT Plugin Vulnerabilities Exposed Data, Accounts
Check Out The New ITsecuritywire Podcast. For more such updates follow us on Google News ITsecuritywire News.
