CoolPal

Critical Flaw Discovered in Microsoft’s New AI Web Protocol NLWeb Microsoft’s ambitious new AI web protocol, NLWeb, designed to bring ChatGPT-like search capabilities to any website, has been hit with a critical security vulnerability just months after its unveiling. Researchers discovered a path traversal flaw, allowing remote users to easily access sensitive files, including system configurations and crucial OpenAI or Gemini API keys. This vulnerability poses a significant risk, potentially enabling attackers to steal an AI agent’s “cognitive engine” and…

Read More Read More