cnki-journal-index

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill explicitly navigates to and scrapes CNKI journal detail pages (navi.cnki.net/knavi/detail) using mcp__chrome-devtools__navigate_page and evaluates document.body.innerText to extract indexing and evaluation data, so untrusted third-party page content is read and used to drive clicks, parsing, and the agent's outputs.