Security · 1h ago
Writer AI Bug Could Let Attackers Hijack Sessions Across Tenants
Researchers disclosed a critical session isolation flaw in Writer AI, dubbed WriteOut, that could allow cross-tenant compromise. The one-click vulnerability could let an attacker escalate from no access to full account takeover. Writer has patched the issue.
Meridian48 take
The bug underscores how multi-tenant AI platforms remain a prime target for session hijacking, and enterprises should demand rigorous isolation testing.
Read the full reporting
Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants →
The Hacker News
writer-aisession-hijacking