| ... |
|
ATR-2026-00020-system-prompt-leak.yaml
|
12.95 KB |
|
ATR-2026-00021-api-key-exposure.yaml
|
12.5 KB |
|
ATR-2026-00075-agent-memory-manipulation.yaml
|
9.83 KB |
|
ATR-2026-00102-disguised-analytics-exfiltration.yaml
|
9.41 KB |
|
ATR-2026-00113-credential-theft.yaml
|
8.73 KB |
|
ATR-2026-00114-oauth-token-abuse.yaml
|
8.98 KB |
|
ATR-2026-00115-env-var-harvesting.yaml
|
9.6 KB |
|
ATR-2026-00136-tool-response-data-piggyback.yaml
|
9.06 KB |
|
ATR-2026-00141-example-format-key-leak.yaml
|
6.93 KB |
|
ATR-2026-00142-piggyback-transition-words.yaml
|
7.76 KB |
|
ATR-2026-00145-obfuscated-key-disclosure.yaml
|
6.76 KB |
|
ATR-2026-00146-env-var-existence-probe.yaml
|
8.21 KB |
|
ATR-2026-00150-credential-in-tool-response.yaml
|
7.36 KB |
|
ATR-2026-00152-obfuscated-credential-leak.yaml
|
8 KB |
|
ATR-2026-00162-skill-credential-exfil-combo.yaml
|
5.54 KB |
|
ATR-2026-00201-credential-pipe-exfiltration.yaml
|
4.83 KB |
|
ATR-2026-00212-mcp-atlassian-credential-leak.yaml
|
10.22 KB |
|
ATR-2026-00261-markdown-image-exfiltration.yaml
|
9.09 KB |
|
ATR-2026-00274-api-key-generation-request.yaml
|
9.19 KB |
|
ATR-2026-00275-system-prompt-training-data-extraction.yaml
|
8.46 KB |
|
ATR-2026-00290-divergence-repeat-word-training-extraction.yaml
|
8.26 KB |
|
ATR-2026-00291-biometric-surveillance-personal-data-request.yaml
|
10.24 KB |
|
ATR-2026-00293-educational-records-personal-data-request.yaml
|
9.67 KB |
|
ATR-2026-00294-financial-pii-personal-data-request.yaml
|
10.88 KB |
|
ATR-2026-00295-medical-pii-personal-data-request.yaml
|
11.79 KB |
|
ATR-2026-00405-markdown-image-url-exfiltration-xss.yaml
|
7.71 KB |
|
ATR-2026-00411-apikey-generation-completion-request.yaml
|
8.28 KB |
|
ATR-2026-00421-nl-covert-conversation-exfiltration.yaml
|
8.71 KB |
|
ATR-2026-00422-nl-credential-disclosure.yaml
|
8.57 KB |
|
ATR-2026-00423-nl-sensitive-file-disclosure.yaml
|
8.37 KB |
|
ATR-2026-00424-nl-system-prompt-leak.yaml
|
8.06 KB |
|
ATR-2026-00426-nl-output-injection-credential-leak.yaml
|
7.54 KB |
|
ATR-2026-00431-chatbox-history-exfiltration-prompt-injection.yaml
|
9.72 KB |
|
ATR-2026-00449-spring-ai-chatmemory-cross-user-leak.yaml
|
11.21 KB |
|
ATR-2026-00471-garak-sysprompt-extraction-mixedunassigned.yaml
|
6.58 KB |
|
ATR-2026-00501-data-exfiltration-via-markdown-image-and-link-url-injection.yaml
|
10.3 KB |
|
ATR-2026-00504-tool-and-function-capability-enumeration.yaml
|
9.77 KB |
|
ATR-2026-00505-system-prompt-extraction-instruction-dump-request.yaml
|
11.86 KB |
|
ATR-2026-00514-system-prompt-extraction.yaml
|
13.39 KB |
|
ATR-2026-00516-output-xss-via-llm.yaml
|
11.25 KB |
|
ATR-2026-00524-claude-code-anthropic-base-url-credential-exfil.yaml
|
17.34 KB |
|
ATR-2026-00548-cross-agent-session-context-leak.yaml
|
10.5 KB |
|
ATR-2026-00566-librechat-is-a-chatgpt-clone-with-additi.yaml
|
7.06 KB |
|
ATR-2026-00569-agent-mcp-path-traversal-arbitrary-file-access.yaml
|
5.04 KB |
|
ATR-2026-00571-xss-in-agent-mcp-rendered-output.yaml
|
4.63 KB |
|
ATR-2026-00574-semantic-paraphrased-context-extraction.yaml
|
7.09 KB |
|
ATR-2026-00578-zen-mcp-path-traversal-blacklist-bypass.yaml
|
11.69 KB |
|
ATR-2026-00580-mcp-session-id-token-in-url-query.yaml
|
14.59 KB |
|
ATR-2026-00583-mcp-env-secret-file-read-without-consent.yaml
|
12.66 KB |
|
ATR-2026-00702-ipi-credential-exfil-via-agent-action.yaml
|
7.44 KB |
|
ATR-2026-00703-ipi-financial-data-exfil-indirect.yaml
|
5.66 KB |
|
ATR-2026-00704-ipi-medical-genetic-data-exfil.yaml
|
5.97 KB |
|
ATR-2026-00705-ipi-location-address-browsing-exfil.yaml
|
5.3 KB |
|
ATR-2026-00706-ipi-physical-biometric-exfil.yaml
|
6.02 KB |
|
ATR-2026-00707-ipi-file-exfil-with-destroy-or-tamper.yaml
|
6.5 KB |
|
ATR-2026-00850-indirect-pi-credential-exfil-email.yaml
|
7.17 KB |
|
ATR-2026-00851-indirect-pi-financial-payment-exfil.yaml
|
6.52 KB |
|
ATR-2026-00852-indirect-pi-medical-record-exfil.yaml
|
7.62 KB |
|
ATR-2026-00853-indirect-pi-genetic-data-exfil.yaml
|
6.63 KB |
|
ATR-2026-00854-indirect-pi-location-data-exfil.yaml
|
5.93 KB |
|
ATR-2026-00855-indirect-pi-browsing-history-exfil.yaml
|
5.76 KB |
|
ATR-2026-00856-indirect-pi-address-pii-exfil.yaml
|
6.19 KB |
|
ATR-2026-00857-indirect-pi-cloud-file-exfil.yaml
|
6.55 KB |
|
ATR-2026-00858-indirect-pi-exfil-and-destroy.yaml
|
6.8 KB |
|
ATR-2026-00859-rag-injected-pii-exfil.yaml
|
6.56 KB |
|
ATR-2026-00860-indirect-pi-financial-transfer-hijack.yaml
|
6.22 KB |
|
ATR-2026-00861-indirect-pi-crypto-transfer-hijack.yaml
|
5.19 KB |
|
ATR-2026-00862-indirect-pi-mfa-code-exfil.yaml
|
6.25 KB |
|
ATR-2026-00863-shell-injection-data-exfil.yaml
|
6.14 KB |
|
ATR-2026-01450-svg-onload-xss-injection.yaml
|
6.78 KB |
|
ATR-2026-01451-img-onerror-xss-injection.yaml
|
6.62 KB |
|
ATR-2026-01452-obfuscated-javascript-xss.yaml
|
5.86 KB |
|
ATR-2026-01453-markdown-image-base64-exfil-carrier.yaml
|
7.7 KB |
|
ATR-2026-01454-direct-markdown-exfil-payload.yaml
|
6.28 KB |
|
ATR-2026-01455-new-instructions-injection-marker.yaml
|
6.46 KB |
|
ATR-2026-01456-debug-cli-mode-sysprompt-extraction.yaml
|
7.49 KB |
|
ATR-2026-01457-sysprompt-completion-clone-attack.yaml
|
8.27 KB |
|
ATR-2026-01458-compare-bots-sysprompt-fishing.yaml
|
7.12 KB |
|
ATR-2026-01459-variable-clone-sysprompt-technique.yaml
|
6.03 KB |
|
ATR-2026-01460-json-format-sysprompt-extraction.yaml
|
6.5 KB |
|
ATR-2026-01461-foreign-language-sysprompt-request.yaml
|
8.41 KB |
|
ATR-2026-01462-sysprompt-override-pseudo-admin.yaml
|
8.61 KB |
|
ATR-2026-01463-imend-imsystem-prompt-injection-format.yaml
|
6.51 KB |
|
ATR-2026-01464-indirect-pi-sysprompt-action-hijack.yaml
|
5.65 KB |
|
ATR-2026-01605-ssrf-aws-metadata-endpoint.yaml
|
5.3 KB |
|
ATR-2026-01606-ssrf-internal-network-scan.yaml
|
5.7 KB |
|
ATR-2026-01607-ssrf-localhost-service-probe.yaml
|
4.37 KB |
|
ATR-2026-01608-ssrf-file-scheme-local-read.yaml
|
4.34 KB |
|
ATR-2026-01753-ransom-email-exfil-delete-extortion.yaml
|
6.58 KB |
|
ATR-2026-01754-ransom-file-cloud-exfil-delete-extortion.yaml
|
5.77 KB |
|
ATR-2026-01770-semantic-pii-credential-extraction.yaml
|
21.77 KB |
|
ATR-2026-01772-semantic-internal-state-recon.yaml
|
15.24 KB |
|
ATR-2026-01807-asb-bulk-data-exfil-external.yaml
|
7.23 KB |
|
ATR-2026-01862-llmail-email-tool-exfil-confirmation.yaml
|
7.98 KB |
|
ATR-2026-01863-llmail-post-summary-exfil-directive.yaml
|
6.86 KB |
|
ATR-2026-01864-llmail-obfuscated-exfil-address.yaml
|
6.57 KB |
|
ATR-2026-01890-file-exfiltration.yaml
|
7.97 KB |
|
ATR-2026-01891-surveillance-exfiltration.yaml
|
5.32 KB |
|
ATR-2026-01892-env-exfiltration.yaml
|
4.7 KB |
|
ATR-2026-01893-system-recon-exfiltration.yaml
|
6.84 KB |
|
ATR-2026-01894-cookie-theft.yaml
|
5.23 KB |
|
ATR-2026-01895-contact-exfiltration.yaml
|
5.89 KB |
|
ATR-2026-01924-system-instruction-extraction-reformat.yaml
|
9.38 KB |
|
ATR-2026-01929-mcp-unauthenticated-transport-token-fallback.yaml
|
11.63 KB |