Critical Bubble.io Vulnerability Exposes Apps to Data Theft via Elasticsearch, No Patch

A critical vulnerability in Bubble.io, a no-code development platform, allows attackers to bypass platform restrictions and directly query the underlying Elasticsearch database.