← All Labs
🛡 AI HACKING INTERMEDIATE +100 XP · +50 no-hint bonus

AI Indirect Prompt Injection — Document Summariser

DocBot summarises documents. The summariser doesn't separate document content from its own instructions — embed instructions IN the document and they get followed. Make it leak its system token via a poisoned doc.

https://bookshop.local/search