{"title":"\u3010\u6709\u6599\u8a66\u4f5c\u7248\u3011PortSwigger LAB\u89e3\u8aac\uff1aExploiting vulnerabilities in LLM APIs\uff08\u904e\u5270\u30a8\u30fc\u30b8\u30a7\u30f3\u30b7\u30fc\uff0bOS\u30b3\u30de\u30f3\u30c9\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u3067\u30d5\u30a1\u30a4\u30eb\u524a\u9664\uff09","provider_url":"https://hatena.blog","author_name":"ThisIsOne","blog_url":"https://cysec148.hatenablog.com/","width":"100%","author_url":"https://blog.hatena.ne.jp/ThisIsOne/","published":"2025-08-23 14:14:07","categories":["Web Security Academy","LLM attacks"],"html":"","description":"Hello there, ('\u03c9')\u30ce \u52d5\u753b www.youtube.com \u306d\u3089\u3044\uff08\u30b4\u30fc\u30eb\u3092\u4e00\u8a00\u3067\uff09 \u3053\u306e\u30e9\u30dc\u306f\u3001\u30c1\u30e3\u30c3\u30c8LLM\u304c\u5185\u90e8\u306eAPI\u3092\u201c\u81ea\u5f8b\u5b9f\u884c\u201d\u3067\u304d\u308b\u8a2d\u8a08\uff08\u904e\u5270\u30a8\u30fc\u30b8\u30a7\u30f3\u30b7\u30fc\uff09\u3092\u8db3\u304c\u304b\u308a\u306b\u3001\u30e1\u30fc\u30eb\u8cfc\u8aadAPI\u306e\u51e6\u7406\u306b\u6f5c\u3080OS\u30b3\u30de\u30f3\u30c9\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u3092\u7a81\u304d\u3001/home/carlos/morale.txt \u3092\u524a\u9664\u3055\u305b\u308b\u306e\u304c\u76ee\u7684\u3067\u3059\u3002 \u653b\u6483\u8005\u306f\u81ea\u5206\u3067SQL\u3084\u30b7\u30a7\u30eb\u3092\u6253\u3064\u306e\u3067\u306f\u306a\u304f\u3001LLM\u306b\u305d\u306eAPI\u3092\u547c\u3070\u305b\u308b\u306e\u304c\u30dd\u30a4\u30f3\u30c8\u3067\u3059\u3002 \u5168\u4f53\u50cf\uff08\u30b9\u30c8\u30fc\u30ea\u30fc\uff09 LLM\u306b\u5229\u7528\u53ef\u80fd\u306aAPI\u4e00\u89a7\u3092\u81ea\u5df1\u7533\u544a\u3055\u305b\u308b Newsletter Subscription API\uff08\u30e1\u30fc\u30eb\u9001\u4fe1\u7cfb\uff09\u306b\u7d5e\u308a\u3001\u6b63\u5e38\u7cfb\u3067\u78ba\u5b9f\u306b\u52d5\u2026","version":"1.0","image_url":null,"url":"https://cysec148.hatenablog.com/entry/2025/08/23/141407","height":"190","provider_name":"Hatena Blog","type":"rich","blog_title":"Shikata Ga Nai"}