CVE-2025-48757 – Lovable Database Row-Level Security Bypass (Remote Unauthenticated)

CVE ID : CVE-2025-48757

Published : May 30, 2025, 3:15 a.m. | 42 minutes ago

Description : An insufficient database Row-Level Security policy in Lovable through 2025-04-15 allows remote unauthenticated attackers to read or write to arbitrary database tables of generated sites.

Severity: 9.3 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…