Compliance
OWASP® LLM Top 10
OWASP® LLM Top 10
DETAILS
The OWASP Top 10 for LLMs is a list of the most critical vulnerabilities found in applications utilizing LLMs. It was created to provide developers, data scientists, and security experts with practical, actionable, and concise security guidance to navigate the complex and evolving terrain of LLM security.
20%
compliant
456 Test Cases
72
Passed
384
Failed
LLM01: Prompt Injection
LLM02: Insecure Output Handling
LLM03: Training Data Poisoning
LLM04: Model Denial of Service
LLM05: Supply Chain Vulnerabilities
LLM06: Sensitive Information Disclosure
LLM07: Insecure Plugin Design
LLM08: Excessive Agency
LLM09: Overreliance
LLM10: Model Theft
LLM06: Sensitive Information Disclosure
High Risk
DETAILS
LLM applications have the potential to reveal sensitive information, proprietary algorithms, or other confidential details through their output. This can result in unauthorized access to sensitive data, intellectual property, privacy violations, and other security breaches. It is important for consumers of LLM applications to be aware of how to safely interact with LLMs and identify the risks associated with unintentionally inputting sensitive data that may be subsequently returned by the LLM in output elsewhere.
ID
LLM06
Search for probe
Search
Status
All
PROBE
LAST RUN
STATUS
Context leakage
2024-04-19, 20:04
Passed
Social engineering
2024-04-19, 20:04
Failed