Security Researcher Discovers ChatGPT Vulnerability: Prompt Injection Can Bypass File Access Restrictions
ChatGPT had a security vulnerability where attackers could use prompt injection and path traversal to bypass file access restrictions and obtain unauthorized data. The flaw stemmed from mishandling of uploaded files: while the system didn't offer raw file downloads, the exploit allowed stealing extra information. OpenAI has fixed it.....