CVE-2023-32786 Information

Description

In Langchain through 0.0.155 prompt injection allows an attacker to force the service to retrieve data from an arbitrary URL essentially providing SSRF and potentially injecting content into downstream tasks.

Reference

https://gist.github.com/rharang/d265f46fc3161b31ac2e81db44d662e1