With new AI systems comes new AI vulnerabilities, and a big one was just discovered. It’s a flaw in Microsoft’s method of allowing agents to interact with websites on your behalf.

Microsoft calls this technique NLWeb , which is a kind of HTML for AI agents. The company unveiled this at its Build conference this spring, and has since leaned into that vision with an experimental Copilot Mode for its Edge browser . (Microsoft hasn’t confirmed whether it uses NLWeb for this.)

Researcher Aonan Guan, however, has discovered a vulnerability in NLWeb: a path traversal bug that lets any remote user read sensitive files like system configurations and cloud credentials via a malformed URL.

In a Medium post , Guan showed how he was able to download a list of the system passwords along with Go

See Full Page