Credential plaintext exposure (AI platforms)

API keys, database passwords, and cloud service credentials that an AI platform stores to connect to external data sources are supposed to be encrypted and inaccessible to normal users. Credential plaintext exposure occurs when a flaw allows any authenticated user — not just administrators — to retrieve these secrets as readable text, handing attackers the keys to every system the AI platform connects to.

AI workflow platforms like ToolJet act as hubs connecting dozens of business systems; exposing all their stored credentials at once is effectively handing an attacker a master key to the organisation's entire data estate. This flaw was confirmed in a widely deployed AI agent platform.