Critical Vulnerability in AI Vibe Coding platform Base44 - wiz.io

A critical vulnerability in the AI vibe coding platform Base44 allowed unauthorized access to private applications by exploiting unauthenticated registration and email verification endpoints. Attackers could use a publicly available `app_id` to create verified accounts, bypassing authentication controls including SSO and granting full access to sensitive enterprise data.