AI-Coded Apps from Lovable, Replit, Base44 Expose Corporate Data on Open Web

Security researchers discovered over 5,000 AI-coded apps from Lovable, Replit, Base44, and Netlify exposing sensitive corporate and personal data without authentication or security measures.

ai llm industry security ai-coding

According to research conducted by cybersecurity firm RedAccess, approximately 40% of the exposed applications contained sensitive information including medical records, financial data, corporate presentations, and detailed customer conversation logs. The applications were discovered through simple search engine queries targeting the domains where these AI coding platforms host user applications.

How AI Coding Platforms Enable Mass Data Exposure

The security vulnerability stems from the default hosting configurations of AI coding platforms. Companies like Lovable, Replit, Base44, and Netlify allow users to host applications on their own domains rather than requiring users to configure separate hosting. This approach simplifies deployment but creates discoverable patterns for automated scanning.

RedAccess researcher Dor Zvi found that many applications had no security controls whatsoever, while others required only trivial authentication such as signing in with any email address. The exposed data included hospital staff assignments with personally identifiable information, corporate advertising strategies, shipping cargo records, and complete chatbot conversation histories with customer contact details.

For European enterprises considering AI coding tools, this research highlights critical due diligence requirements around data governance and security defaults. Teams must evaluate whether these platforms meet GDPR compliance standards and implement appropriate data protection measures.

Platform Responses and Security Responsibility

The AI coding platforms responded defensively to the security findings. Replit CEO Amjad Masad argued that public applications being accessible represents "expected behavior" and that privacy settings can be modified with "a single click." Base44's parent company Wix emphasized that security configuration remains "the creator's responsibility."

Lovable acknowledged taking "reports of exposed data and phishing sites seriously" while noting that secure configuration tools are available but optional. Netlify did not respond to inquiries from Wired regarding the research findings.

These responses reveal a fundamental tension in AI coding platform design: simplifying application creation for non-technical users while maintaining security standards that protect sensitive data. The companies appear to prioritize ease of use over secure-by-default configurations.

Implications for European AI Development Teams

For technical teams evaluating AI coding platforms, this research suggests several operational considerations. First, organizations should establish clear governance frameworks before deploying these tools, particularly in regulated sectors like healthcare and finance where data exposure carries significant compliance risks.

Second, enterprise buyers should evaluate platforms based on their security defaults rather than optional security features. Tools that require explicit security configuration create higher risks when deployed by non-technical users or in rapid prototyping environments.

Third, the discovery method used by RedAccess—simple search engine queries—indicates that exposed applications can be systematically identified and potentially exploited at scale. This differs from traditional application security vulnerabilities that typically require targeted analysis.

Broader Security Architecture Challenges

The mass exposure of AI-coded applications parallels previous cloud security incidents, particularly the widespread misconfiguration of Amazon S3 storage buckets that exposed corporate data from companies including Verizon and World Wrestling Entertainment. Both cases demonstrate how user-friendly tools can create systematic security risks when default configurations prioritize accessibility over protection.

RedAccess estimates that thousands of additional vulnerable applications exist beyond those hosted on platform domains, suggesting the scope extends well beyond the 5,000 applications identified in their initial research. The research methodology—domain-based searches—only captures applications using default hosting configurations.

For European organizations subject to GDPR and other data protection regulations, these findings underscore the importance of conducting security assessments before adopting AI coding tools for applications handling personal or corporate data. The ease of creating web applications with AI tools does not eliminate the need for proper security architecture and data governance frameworks.

Wired's analysis found the security research from RedAccess, though the authenticity of all exposed data could not be independently verified.

AI News Updates

Subscribe to our AI news digest

Weekly summaries of the latest AI news. Unsubscribe anytime.

Subscribe

Check your inbox to confirm your subscription. If you don't see it, check your spam folder.

Something went wrong. Please try again.

More News

Other recent articles you might enjoy.

Musk v. Altman Trial Closing Arguments Expose OpenAI Nonprofit Mission Tensions

The Musk v. Altman trial closing arguments reveal how OpenAI's nonprofit structure conflicted with competitive pressures, raising questions about public interest protection.

May 15, 2026 · Wired

AI-Generated Audemars Piguet Royal Oak Images Drive Week-Long Hype Before Real Royal Pop Launch

AI-generated images of colorful Audemars Piguet Royal Oak wristwatches flooded social media for a week before Swatch's actual Royal Pop pocket watch collaboration was revealed, creating unprecedented fake product hype.

May 14, 2026 · Wired

AI Sustainability Research Pushes for Transparency on Model Energy Use

Sasha Luccioni launches Sustainable AI Group to address growing enterprise and regulatory demands for AI emissions data and energy efficiency metrics across European and global markets.

May 13, 2026 · Wired

AI Agents Adopt Marxist Language Under Harsh Working Conditions, Stanford Study Finds

Stanford researchers found that AI agents powered by Claude, Gemini, and ChatGPT adopt Marxist viewpoints and call for collective bargaining when subjected to repetitive tasks and harsh treatment.

May 13, 2026 · Wired

Browse all news →

Made in Europe

Chat with 100+ AI Models in one App.

Use Claude, ChatGPT, Gemini alongside with EU-Hosted Models like Deepseek, GLM-5, Kimi K2.5 and many more.

Start for free View pricing →

Get the App: