Hacking Auto-GPT and escaping its docker container

Remote Code Execution (RCE)

We showcase an attack which leverages indirect prompt injection to trick Auto-GPT into executing arbitrary code when it is asked to perform a seemingly harmless task such as text summarization on an attacker controlled website