Sign In

Published on May 30, 2025
In AI Features

When Replit Employees Found a Critical Security Vulnerability in Lovable

Soon after, Lovable responded, indicating that updates were shipped to fix these issues.

Image by Nalini Nirad

By Supreeth Koundinya

Lovable, a Sweden-based AI-powered coding platform, reportedly contained critical security vulnerabilities. Matt Palmer, who handles developer relations at Replit, a competing AI coding platform headquartered in the United States, and his colleague discovered the vulnerability in Lovable’s implementation of Row Level Security (RLS) policies in March. Palmer published his findings in a blog post on Thursday. “Applications developed using its platform often lack secure RLS configurations, allowing unauthorised actors to access sensitive user data and inject malicious data,” said Palmer. RLS is a way to ensure that application users can only see and modify data they should have access to. Palmer found these vulnerabilities while examining an app called Linkable, whi

Subscribe or log in to Continue Reading

Uncompromising innovation. Timeless influence. Your support powers the future of independent tech journalism.

Already have an account? Sign In.

📣 Want to advertise in AIM? Book here

Supreeth Koundinya

Supreeth is an engineering graduate who is curious about the world of artificial intelligence and loves to write stories on how it is solving problems and shaping the future of humanity.

Related Posts

How This Coimbatore SaaS Firm Cracked Hidden Enterprise Problem Costing Millions

Lovable Introduces Cloud and AI Features to Build Full-Stack Apps

Two Indian Engineers on a Mission to Automate Home Cooking for the World

IBM Helps Unity Bank Cut Time to Market for New APIs by 50%

ChatGPT’s Deep Research

ChatGPT’s New Background Agent ‘Insanely Useful’

Don’t Miss the Next Big Shift in AI.

Get one year subscription for ₹5999

Enterprises Beware: Agent-Washing Clouds the Future of AI

Vendors mislabel copilots as agents, raising regulatory and operational risks for firms chasing the promise of agentic AI.

How Neysa Stands Out in the IndiaAI GPU Race

Unlike other providers focused on GPU allocation, Neysa claims to deliver an end-to-end AI cloud platform.

BharatGen and the Pursuit of Sovereign, Scalable AI for India

“Knowledge-driven components are important because we don’t want everything to be just algorithmic innovation.”

How Pradhi AI Embeds Emotional Intelligence in Voice AI

As businesses recognise the potential of voice-driven tech, Pradhi AI is laying the foundation for an empathetic, responsive AI ecosystem.

Mangaluru Looks to Build Its Own Tech Identity, Not Replicate Bangalore

“The coastal city could showcase tangible results by applying deep tech to areas it already dominates”

Google’s Gemini Nano Banana and the Cost of Convenience

The company’s new AI image and photo editor deepens concerns over data use and consent gaps, experts warn.

Karya Google

BharatGen’s ‘Recipe’ for Building a Trillion Parameters Indic Model

The consortium insists sovereignty doesn’t mean shutting the door on global players.

AI in design

Storytelling is in the Creator’s Control with GenAI

“Democracy would not have been possible without storytelling being distributed.”

Download the easiest way to
stay informed

Flagship Events ↗