Sign in with ANY password into Rocket.Chat EE, found by our open source AI agent

Hey! I’m one of the authors of this blog post. We (the GitHub Security Lab) developed an open-source AI-framework that supports security researchers in discovering vulnerabilities. In this blog post we show how it works and talk about the vulnerabilities we were able to find using it (including viewing PII of other users in online shops and logging into a popular chat application service using ANY password)