2 matches found
SQLBot SQL注入漏洞
SQLBot is an intelligent data querying system developed by DataEase, based on large models and RAG techniques. Versions of SQLBot 1.7.0 and earlier contained a SQL injection vulnerability. This vulnerability stemmed from the Text2SQL chat interface, where the user-provided question parameter was...
Probe Before You Talk: Towards Black-Box Defense against Backdoor Unalignment for Large Language Models
Backdoor unalignment attacks against Large Language Models LLMs enable the stealthy compromise of safety alignment using a hidden trigger while evading normal safety auditing. These attacks pose significant threats to the applications of LLMs in the real-world Large Language Model as a Service...