EPSS
Percentile
40.6%
In Langchain through 0.0.155, prompt injection allows an attacker to force the service to retrieve data from an arbitrary URL, essentially providing SSRF and potentially injecting content into downstream tasks.
gist.github.com/rharang/d265f46fc3161b31ac2e81db44d662e1