Critical OneDrive Flaw Lets Malicious Websites Access All Your Files

A newly revealed vulnerability in Microsoft’s OneDrive File Picker has placed millions of users at risk, enabling popular web applications, including ChatGPT, Slack, Trello, and ClickUp, to gain full read access to users’ entire OneDrive accounts. The flaw, uncovered by the Oasis Security Research Team, stems from excessive OAuth permissions and insecure token management, raising […] The post Critical OneDrive Flaw Lets Malicious Websites Access All Your Files appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/critical-onedrive-flaw/