K241单词上传

Security checks across malware telemetry and agentic risk

Overview

This skill is purpose-aligned for managing K241 vocabulary, but it exposes a shared login and gives agents direct ability to change live website records.

Use or install this only if you are authorized to administer the K241 word site. Treat the included password as exposed, rotate it, and prefer a version that asks you for credentials securely and requires confirmation before uploading or updating records.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 82% confidence
Finding: The trigger description includes broad phrases like '上传单词' and '添加单词到网站', which can match common user requests and cause the skill to activate in more situations than intended. Because this skill performs authenticated actions against a live site, overly broad triggering increases the chance of unintended execution and misuse of the embedded workflow.

Natural-Language Policy Violations

High

Confidence: 99% confidence
Finding: The skill documentation exposes a hardcoded username and password in plaintext, which is a direct credential disclosure. Anyone with access to the skill can reuse those credentials to log into the site, upload or modify words, and potentially access additional administrative functionality.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal