Exploiting an Enterprise AI: Chaining Vulnerabilities in a RAG HR Gateway
Quick Links: Source Code: View on GitHub (vulnerable-rag-agent) Author: Connect with Lakshya Rastogi on LinkedIn Executive Summary: The AI Blind Spot As startups and enterprises rapidly integrate Large Language Models (LLMs) into their internal workflows, a critical new attack surface is emerging: the data we trust the AI to process. To demonstrate this risk, I engineered “Happy-HR,” a deliberately vulnerable Retrieval-Augmented Generation (RAG) application. Designed as an internal HR assistant, the bot summarizes candidate resumes by parsing PDF uploads. However, by exploiting how the application handles this untrusted file input, I demonstrated how an external attacker could completely hijack the AI’s core instructions. ...