If you are using AI coding assistant tools, you need to be cautions when doing so, as these tools often generate code with vulnerabilities. In today's video we will be attempting to exploit two vulnerabilities that were found in AI generated code, as well as showing you how you can easily fix them.

Use Snyk for free to find and fix security issues in your applications today! https://snyk.co/ugLYn

✍️ Resources ✍️

• Free Snyk account: https://snyk.co/ugLYn

⏲️ Chapters ⏲️

00:00 - Intro

00:43 - Getting Acquainted with the Application

01:37 - Exploiting a Vulnerability

03:14 - Further Exploiting - Triggering an Alert Box

03:46 - What's the Big Deal?

04:43 - How an Attacker can Locate your Sensitive Data

06:09 - Fixing the Vulnerability with Snyk

07:07 - Vulnerability 2

07:44 - How a NoSQL Injection Attack Works

08:06 - Passing in a Note ID

10:16 - Outro

⚒️ About Snyk ⚒️

Snyk helps you find and fix vulnerabilities in your code, open-source dependencies, containers, infrastructure-as-code, software pipelines, IDEs, and more! Move fast, stay secure.

Learn more about Snyk: https://snyk.co/ugLYl

📱 Connect with Us 📱

🖥️ Website: https://snyk.co/ugLYl
🐦 X: http://twitter.com/snyksec
💼 LinkedIn: https://www.linkedin.com/company/snyk
💬 Discord: https://discord.gg/devsecops-community-918181751526948884

• ️ Subscribe: https://www.youtube.com/c/SnykSec
• 🔥 We're hiring! Check our open roles: https://snyk.co/ugLYp

🔗 Hashtags 🔗

#ai #exploit #pentesting #devsecops