Dongkyu Lee

Papers in Database (1)

attack arXiv Apr 3, 2026 · 6w ago

Poison Once, Exploit Forever: Environment-Injected Memory Poisoning Attacks on Web Agents

Wei Zou, Mingwen Dong, Miguel Romero Calvo et al. · Pennsylvania State University · Amazon Web Services

Memory poisoning attack on LLM web agents via contaminated webpage observations, achieving persistent cross-session compromise

Data Poisoning Attack Prompt Injection Excessive Agency nlpmultimodal
PDF