Account Takeover in ChatGPT
Account Takeover in ChatGPT
Hello everyone. My name is Diego Tellaroli, and in today’s article, I am going to explain how a hacker
could exploit a critical vulnerability that allowed him to take over an account in ChatGPT. This way,
the hacker could invade any ChatGPT user’s account with just a single click, potentially gaining access
to confidential information and being able to perform any action on the victim’s account. This
vulnerability was found by Nagli so all credits go to him.
To understand this vulnerability first, let’s understand what an account takeover is: An
account takeover is a type of cyber attack where a hacker gains unauthorized access to a user’s online
account, typically by stealing the user’s login credentials or exploiting vulnerabilities in the system.
Once the hacker gains access to the account, they can perform various malicious activities, such as
stealing personal information, making fraudulent transactions, or spreading malware.
The attack
We could access https://chat.openai.com/api/auth/session and the API will return our account data, such
as name, email, ID, and the most critical one: our access token.
Now if we go to
https://chat.openai.com/api/auth/session/victim.css, we will find the same content as /api/auth/session,
regardless of whether the victim.css file exists on the server. It will return the user’s data, such as the
access token.