CVE-2024-6706 Information

Description

Attackers can craft a malicious prompt that coerces the language model into executing arbitrary JavaScript in the context of the web page.

Reference

https://korelogic.com/Resources/Advisories/KL-001-2024-005.txt